A Google security engineer has discovered a Windows zero-day flaw that could be used to crash PCs or gain additional access rights. The issue is less critical than other flaws as it’s not a remotely exploitable one. The vulnerability is confirmed on a fully patched Windows 7 x86 Professional (win32k.sys version 6.1.7601) and reported on Windows 8.18126. Microsoft acknowledged the vulnerability late Tuesday, saying it is investigating. Security company Secunia has also picked up on the flaw.
Source: https://thehackernews.com/2013/05/windows-zero-day-vulnerability-publicly.html