Google security expert Tavis Ormandy has discovered a vulnerability in Windows that can be exploited by any user on the system to obtain administrator privileges. He posted details to the Full Disclosure security mailing list in mid-May and has now published an exploit to the same mailing list. Microsoft told heise Security that it was looking into the problem and would “take appropriate measures” to protect its customers. It was not able to say when the vulnerability would be closed or how users could protect themselves from it.”]