Credit: Duqu Authors
As seen in “Stuxnet 2: Electric Duquloo”, this 100% reliable kernel-mode remote code execution exploit could rootkit any version of Windows ever from a font file embedded in a web page or various other file formats. What else could you possibly want from a client-side vulnerability? A cookie?