Microsoft has this week patched the "JASbug critical" vulnerability (MS15-011) which can allow remote code execution by granting attackers administrator level privileges. The attacker has to trick a user to connect their client machine to the attacker’s malicious domain, so is aimed at the Enterprise.  ..

A Google security researcher, 'James Forshaw' has discovered a privilege escalation vulnerability in Windows 8.1 . ..