A 20-year-old bug in Microsoft Windows could allow a non-privileged user to run code that will give him or her full SYSTEM privileges on a target machine. The bug resides in a legacy, omnipresent protocol named Microsoft CTF. CTF is problematic because it communicates with other Windows services without proper authentication. An attacker could connect to another user s active session and take over any application, or wait for an administrator to login and compromise their session, Google Project Zero’s Tavis Ormandy said.
Source: https://threatpost.com/20-year-old-bug-legacy-microsoft-windows-users/147336/