A security researcher has released RoguePlanet, a Windows zero-day exploit leading to local privilege escalation to SYSTEM.

Windows has come a long way from its wild west days, with multiple protections that guard against dangerous software. But attackers constantly try to evade those defenses—and recently succeeded with a ...

Cybersecurity firm ESET discovered a Windows zero-day exploit that affects older systems like Windows 7 and Server 2008. Called CVE-2019-1132, it is a privilege escalation issue linked to how the ...

Update, Dec. 07, 2024: This story, originally published Dec. 06 now includes a statement from Microsoft about the new Windows zero-day vulnerability and further information about the 0patch ...

A new exploit for IE9 bypasses all security measures in even the latest fully patched version of Windows 7, according to a French security company Vupen. The exploit uses an unpatched zero-day ...

A pair of Windows bloggers posted more proof-of-concept code today that subverts an important security feature of Windows 7, a problem Microsoft knew about as long ago as last October and which one of ...

Hackers will quickly jump on one of the 15 vulnerabilities Microsoft patched Tuesday to build attack code that infects Internet Explorer users, security researchers agreed today. The bug, which ...

Security researchers have discovered and released details about an actively exploited Microsoft Windows security flaw that could allow threat actors to gain elevated privileges on affected systems.

Although Microsoft has patched multiple DLL load hijacking vulnerabilities since last summer, Windows and Internet Explorer 9 (IE9) can still be exploited, a security company warned today. Microsoft ...

A pair of Windows bloggers posted more proof-of-concept code today that subverts an important security feature of Windows 7, a problem that Microsoft knew about as long ago as last October and that ...