Security News > 2017 > June > Google researcher uncovers another RCE in Microsoft Malware Protection Engine (Help Net Security)
2017-06-27 19:02
Google Project Zero researcher Tavis Ormandy has unearthed yet another critical remote code execution vulnerability affecting the Microsoft Malware Protection Engine, which powers a number of the company’s antivirus and antispyware software. Discovered earlier this month with the help of a fuzzer for the Windows Defender component created by Ormandy himself, the vulnerability affects the x86 emulator in Windows Defender, which “runs as SYSTEM, is unsandboxed, is enabled by default and remotely accessible to attackers.” … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/wYnLyYxtgrk/
Related news
- Cloud storage lockers from Microsoft and Google used to store and spread state-sponsored malware (source)
- New LianSpy malware hides by blocking Android security feature (source)
- Microsoft Reveals Four OpenVPN Flaws Leading to Potential RCE and LPE (source)
- Researchers Uncover 10 Flaws in Google's File Transfer Tool Quick Share (source)
- Microsoft patches scary wormable hijack-my-box-via-IPv6 security bug and others (source)
- Microsoft patches scary wormable hijack-my-box-via-IPv6 security bug and others (source)
- Microsoft disables BitLocker security fix, advises manual mitigation (source)
- Ransomware gang deploys new malware to kill security software (source)
- Azure domains and Google abused to spread disinformation and malware (source)
- Microsoft: Exchange Online mistakenly tags emails as malware (source)