Trustwave researchers have found an advertisement on an underground market for Russian speaking cyber criminals offering a Windows zero-day exploit. They noted that it is not possible to conclude if it is a valid exploit unless someone buys it and tries it out.
Helpnetsecurity noted that sales of zero days before now have been a business conducted in the shadows – always in private between the buyer and seller or possibly involving a middleman. A zero day being offered on a public forum shows that the business is coming out of the shadows into the open.
Trustwave researchers said it could be used to perform sandbox escapes, install rootkits, modify system properties that allow persistence on the system, install additional malicious software, etc. Users are advised to keep their softwares up-to-date, implement layered defense and use common sense to protect themselves against attacks.