The people at Microsoft are quite upset that just after reporting a bug in Windows 10 Google has made the bug public within 10 days. Normally a bug is made public after 60 days and a window of 60 days is normally given to accompany to release a patch. The problem might be that the bug is already being exploited by attackers and this is why Google disclosed the vulnerability before Microsoft could release a patch. The bug was discovered by Google’s Threat Analysis group. The bug allows attackers to escape from security sandboxes through a flaw in the win32k system. According to Google, the bug is being actively exploited and this is why Google went public within 10 days of notifying Microsoft.
People at Microsoft are upset because making the bug public so early puts many people at risk. Google has deployed a fix to protect Google Chrome users but the users of the Windows 10 operating system remain vulnerable to hacking attacks. According to a statement given to VentureBeat, Microsoft says, “Today’s disclosure by Google puts customers at potential risk. We recommend customers use Windows 10 and the Microsoft Edge browser for the best protection.”
The Windows 10 braking system isn’t directly vulnerable. A Flash vulnerability needs to be exploited in order to make full use of the Windows 10 vulnerability. Since the Flash plug-in is already being patched it will be advisable if you can update your Flash plug-in and this will very much reduce your chances of being targeted by hackers using the Windows 10 vulnerability.