Google Project Zero’s researchers have discovered another critical remote code execution vulnerability in Microsoft’s Windows, and it seems something truly bad!


UPDATE

Microsoft immediately releases a fix, and ProjectZero releases vulnerability details:

[embed]https://www.andreafortuna.org/the-crazy-bad-vulnerability-has-been-fixed-by-microsoft-in-a-very-short-time-9dd54c0d0ece[/embed]

During the weekend, the Project Zero’s researchers Tavis Ormandy and Natalie Silvanovich announced that they have discovered

“the worst Windows remote code execution vulnerability in recent memory”

[embed]https://twitter.com/taviso/status/860679110728622080[/embed]
[embed]https://twitter.com/taviso/status/860681252034142208[/embed]

The researchers did not provide any further details, as Google gives a 90-day security disclosure deadline to all software vendors to patch their products and disclose it to the public.


I will update the post as soon as more information is available …

Stay tuned!