Security · 3h ago
Windows Zero-Day PoC Exploit Released Hours After Patch Tuesday
Security researcher Chaotic Eclipse released a proof-of-concept exploit called LegacyHive targeting a Windows User Profile Service elevation of privileges vulnerability. The exploit requires low privileges and could allow attackers to gain system-level access. Microsoft did not address this flaw in its July Patch Tuesday updates.
Meridian48 take
The rapid disclosure of a working exploit underscores the gap between patch cycles and active threats, putting pressure on Microsoft to respond outside its monthly schedule.
Read the full reporting
Researcher Drops New Windows Zero-Day PoC Hours After Microsoft Patch Tuesday →
The Hacker News
windows-zero-dayprivilege-escalation