She’s not being very nice about Microsoft…:
[…] Because the exploits cannot be used remotely, they are not as dangerous as some attacks, says Tripwire’s Young.
“Similar to past SandboxEscaper releases, these exploits are also local privilege escalations, meaning that attackers would use these only after gaining a foothold on a targeted system,” he says.
SandboxEscaper has gained a reputation for releasing LPE exploits with no warning. The researcher has posted repeatedly of her dislike for the software and security industries.
“F— this s—– industry. I don’t plan to make a career in it anyway,” she wrote in a post on Wednesday. “I hate all the people involved in this industry. Everyone just thinks they know better. Everyone just loves pointing fingers.”