Google's Project Zero at it again with "crazy bad" Windows vulnerability

Home » Edge

Reading time icon 1 min. read

Calendar icon Published on

by Surur Davids 

published on

Share this article

Readers help support MSpoweruser. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help MSPoweruser sustain the editorial team Read more

It looks like Microsoft is getting ready to be hammered once again by Google, with Tavis Ormandy, a security researcher at Google, tweeting that Windows has a “crazy bad” vulnerability which can be executed automatically remotely.

He tweeted:

Some commentators have suggested announcing the vulnerability publicly on twitter has been irresponsible, as knowledge of the presence of the bug would focus black hat security researchers on re-discovering the hole themselves.

Over the last year, Google has in addition released information on a number of Windows bugs before Microsoft had a patch ready, and a vulnerability which can automatically spread from PC to PC without user intervention would be particularly serious.

Hopefully, Google will be more responsible in their disclosure of this newly discovered bug, with standard practice giving Microsoft 3 months to fix it before releasing information.

Surur Davids

Surur Davids Shield

Smartphone Expert

Surur Davids is the founder of WMPoweruser which later became MSPoweruser.com. He's a smartphone expert with over a decade of experience.

User forum

0 messages