Security News > 2018 > August > Microsoft Zero-Day Exploit Published Before Patch
2018-08-29 10:18
Exploit Code Published After Disclosure Process Appears to Have Gone SidewaysMicrosoft appears set to patch a zero-day local privilege escalation vulnerability after a research published proof-of-concept exploit code for the flaw. That's a relatively rare turn of events these days, owing to Microsoft's bug bounty program rules.
News URL
https://www.inforisktoday.com/microsoft-zero-day-exploit-published-before-patch-a-11434
Related news
- Microsoft discloses Office zero-day, still working on a patch (source)
- Microsoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploited (source)
- Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws (source)
- Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities (source)
- Microsoft confirms IE bug squashed in Patch Tuesday was exploited zero-day (source)
- Microsoft fixes 6 zero-days under active attack (source)
- Microsoft Issues Patches for 90 Flaws, Including 10 Critical Zero-Days (source)
- Microsoft Patched 6 Actively Exploited Zero-Day Flaws (source)
- Microsoft Patches Zero-Day Flaw Exploited by North Korea’s Lazarus Group (source)
- New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) (source)