Israeli security researcher Gil Dabah said he had published a proof-of-concept and a report describing 25 bugs. The PoC presents an exploit in variations for the same type of vulnerability that exists in the element Win32k.
The Dabah project presents attacks on their operating system Windows known since the mid-90s. Vulnerabilities affect Win32k, an element of Windows which manages the user interface in its 32 bit architectures Windows and the interactions between the UI components, the drivers and the Kernel of their operating system Windows.
So fix it Win32k is quite a difficult case. Some functions occur entirely in the kernel space, while others use older parts of the code.
For more than a decade, security researchers have been detailing many techniques for inserting malicious code into an item. Win32k which helps them gain administrator rights.
Today, however, even after its inaction Microsoft Israeli researcher publishes 34-page report outlining many methods of attacking via the element Win32k.
The researcher found 25 different bugs, some of which work even in the latest versions of Windows 10.
Dabah, however, said that Microsoft is currently developing a "bug fix for solving this category of problems once and for all". The fix is currently in the WIP version (Windows Insider Preview), according to Dabah.
Once this mitigation comes to life, Dabah hopes to link all the other bugs to the same vulnerability, even those that have not yet been discovered or documented.