Microsoft security boffins throw fresh CVEs at unpatched OS, emerge smiling
16 Jan 2017 at 08:01, Darren Pauli Microsoft says its Windows 10 Anniversary Update squashes more exploit delivery chains than ever.The August updates brought in a series of operating system security improvements including boosts to Windows Defender and use of AppContainer, designed to raise the difficulty of having zero day exploits execute on patched systems.
Redmond's security team tested its exploit mitigations against two kernel-level then zero-day exploits (CVE-2016-7255, CVE-2016-7256) used by active hacking groups that offer privilege escalation.
Full Article