BleepingComputer

Exploit code has been released for an unpatched Windows privilege escalation flaw reported privately to Microsoft, allowing attackers to gain SYSTEM or elevated administrator permissions.

https://www.bleepingcomputer.com/news/security/disgruntled-researcher-leaks-bluehammer-windows-zero-day-exploit/

Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit

Exploit code has been released for an unpatched Windows privilege escalation flaw reported privately to Microsoft, allowing attackers to gain SYSTEM or elevated administrator permissions.

BleepingComputer
7:19pmWeb
Show threadAndrew3h ago
@BleepingComputer Yeah, you’ll get that on these slop-build jobs.
Show threadAdam Shostack  3h ago
@BleepingComputer Leaks? What confidentiality obligation did they have?
Show threadPēteris Krišjānis3h ago
@adamshostack @BleepingComputer it is more of gentlemen rule. There is no legal obligation, at least not yet.
Show threadAdam Shostack  3h ago

@peteriskrisjanis @BleepingComputer To be frank, the gentleman met the bar. They disclosed to Microsoft, who said "eh."

At that point, it's not rude in the least to say "Thanks for saying its not a bug that you'd fix."

Show threadGreg Bell2h ago
@adamshostack @peteriskrisjanis @BleepingComputer also "please go through this arbitrary kafkaesque work gauntlet before we let you reach anyone competent"