Local privilege-escalation (LPE) zero-day bug in Microsoft Task Scheduler bug now has a micropatch. SandboxEscaper has released a fix for the dangerous LPE bug, while we wait for Microsoft s official patch. The bug allows a low-privileged user on the computer to arbitrarily modify any file, including system executables. The attack gives an adversary access to highly privileged files that usually only SYSTEM and TrustedInstaller have ownership over.
Source: https://threatpost.com/zero-day-sandboxescaper-windows-fix/145337/