Microsoft believes that providing customers with comprehensive and relevant information about vulnerabilities can help make the entire computing ecosystem safer, by reducing the return on investment that attackers expect to gain from exploiting vulnerabilities. Researchers have studied some of the exploits that have been discovered over the past several years and the vulnerabilities they targeted. Understanding which vulnerabilities get exploited, who exploits them, how they do it, and when vulnerabilities are exploited is key to accurately assessing the risk that they pose.
Microsoft is committed to helping customers assess the risk they face from vulnerabilities. This article examines exploits that have been discovered, the vulnerabilities they targeted and guidance on how to stay ahead of exploits.