Security firm Vectra discovered the vulnerability (CVE-2016-3238), which Microsoft fixed in MS16-087. By this point in time, CVE-2016-3238 is by far the vulnerability of the year, being easy to execute, providing different methods of launching attacks, and affecting a humongous number of users.

Read the article