Anonymous hacker going by online alias “SandboxEscaper” has released new exploits for two more unpatched Microsoft zero-day vulnerabilities. The two new vulnerabilities affect Microsoft’s Windows Error Reporting service and Internet Explorer 11. The first exploit bypasses the patch Microsoft released for an elevation of privilege vulnerability (CVE-2019-0841) in Windows that existed when Windows AppX Deployment Service (AppXSVC) improperly handles hard links. The second vulnerability affects Microsoft’s web browser, IE11, though the exploit note doesn’t contain any detail about this flaw.
Source: https://thehackernews.com/2019/05/microsoft-zero-day-vulnerability.html