The worst Windows RCE exploit of all time is coming?
Google Project Zero’s researchers have discovered another critical remote code execution vulnerability in Microsoft’s Windows, and it seems something truly bad!
UPDATE
Microsoft immediately releases a fix, and ProjectZero releases vulnerability details:
[embed]https://www.andreafortuna.org/the-crazy-bad-vulnerability-has-been-fixed-by-microsoft-in-a-very-short-time-9dd54c0d0ece[/embed]
During the weekend, the Project Zero’s researchers Tavis Ormandy and Natalie Silvanovich announced that they have discovered
“the worst Windows remote code execution vulnerability in recent memory”
[embed]https://twitter.com/taviso/status/860679110728622080[/embed]
[embed]https://twitter.com/taviso/status/860681252034142208[/embed]
The researchers did not provide any further details, as Google gives a 90-day security disclosure deadline to all software vendors to patch their products and disclose it to the public.
I will update the post as soon as more information is available …
Stay tuned!