“Tavis Ormandy has discovered a security vulnerability in Windows which can be exploited by any user on the system to obtain administrator privileges.”
see Google researcher discloses zero-day exploit for Windows
Sigh. Here we go again, a billion PCs with little or no security simply because they run M$’s OS. Even if you love M$’s software for other reason, no sane person should let all their IT rest on M$. They are an unreliable “partner”. With all the money they have they are not able to secure their OS because it is defective by design.