On Monday, Google disclosed a zero-day vulnerability in Windows, which if exploited will enable an attacker to use it as a security sandbox escape. In response, Microsoft didn’t offer details on a fix, instead choosing to promote Windows 10 and argue for coordinated disclosure.
Google says the flaw was discovered on October 21, along with a vulnerability in Adobe’s Flash. Adobe fixed their software last Wednesday, but since the Windows vulnerability is being actively exploited online, Google disclosed basic details about the flaw on Monday.
Leave a reply