One-year-old (unpatched) Windows 'token kidnapping' under attack
Exactly one year after a security researcher notified Microsoft of a serious security vulnerability affecting all supporting version of Windows (including Vista and Windows Server 2008), the issue remains unpatched and now comes word that there are in-the-wild exploits circulating.The vulnerability, called token kidnapping (.