Critical vulnerability in Windows publicly disclosed after Microsoft misses deadline


Originally published at:

The Zero Day Initiative (ZDI), a security organization that provides security researchers a financial incentive to report 0-day vulnerabilities privately to vendors, has disclosed a vulnerability in Windows for which no patch is available yet. When the vulnerability is properly exploited, an attacker can execute arbitrary code remotely on the target system.


This is how a company gets it’s own black eye…