A newly discovered installer for the Duqu malware includes an exploit for a previously unknown vulnerability in the Windows kernel that allows remote code execution. Microsoft is working on a fix for the kernel vulnerability right now. The exact location and nature of the flaw isn t clear right now. The installer discovered by the CrySyS Lab at the Budapest University of Technology and Economics was specifically written to be useful against one organization s environment and was only designed to be installed during a period of eight days in August.
Source: https://threatpost.com/duqu-installer-contains-windows-kernel-zero-day-110111/75833/