Yesterday, Microsoft has launched this month for routine cumulative update to fix a variety of products of all kinds of loopholes, but Microsoft has yet to resolve known security vulnerabilities. In view of this Google security laboratory, this vulnerability has been disclosed directly, since this vulnerability has exceeded Google specified scheduled time to repair. The vulnerability exists in Microsoft's Text Services Framework (TSF) This vulnerability affects all versions of Windows XP and later.
Google security researcher Taviso released a research report on security vulnerabilities very detailed blog, this vulnerability has informed Microsoft. But Taviso do not know why Microsoft did not fix this vulnerability, because the repair is too complicated and temporarily unknown. However, Google requires that all loopholes must be repaired within 90 days or 15 days extra cushion, and regardless of whether the patch expired, the vulnerability will be disclosed. Since Microsoft has not released a security update to fix the error after repair vulnerabilities, so Google Labs completely disclosed this vulnerability.
Text Services Framework vulnerable mainly calling various input methods, and then enter the content or display type in the application window. In fact, Microsoft has been using sandbox technology to isolate and flow control applications, and many exchange information between applications are direct filtration. However, you can use security vulnerabilities text services framework to enhance the authority, even by exploiting vulnerabilities can convert ordinary user permissions administrator privileges. An attacker with administrator privileges can do things immediately become very large, in fact successfully exploited this vulnerability could take complete control of the entire system.
Text Services Framework is a Microsoft developed years ago a system service. Google researchers have found that the service had a lot of code comments. The researchers speculate that the service components should have been abandoned, but in the end, some of the contents are reserved, until now, Windows 10 was retained. In fact, the earliest Text Services Framework is a Microsoft released in 2001, Microsoft Office XP version that is not included in the operating system. Microsoft this service framework migrate from software to the operating system, and then leave it in all future versions.
Sources, pictures google project zero