| ▲ | m3047 3 hours ago | |
> The disclosure even says the concern for single user systems is very low. For single user systems (not rigorously defined, I presume it's the intersection of our two definitions which we might be talking about) the nature of the exploit is local privilege escalation, of which there could be many possible, and many mitigations / countermeasures against. This could have suddenly appeared from the ether of "unknown unknowns" for some people. Those people farther up the food chain still potentially have service accounts, maybe even user accounts for some purposes, perhaps "trusted" services which deliver them code which they deserialize and run once. (Have a pickle.) severity * impact * likelihood Not everyone looking to migrate from Windows 95 plans to run everything as root afterward. On the copy.fail site: | ||