Security News > 2017 > June > Google researcher uncovers another RCE in Microsoft Malware Protection Engine (Help Net Security)
2017-06-27 19:02
Google Project Zero researcher Tavis Ormandy has unearthed yet another critical remote code execution vulnerability affecting the Microsoft Malware Protection Engine, which powers a number of the company’s antivirus and antispyware software. Discovered earlier this month with the help of a fuzzer for the Windows Defender component created by Ormandy himself, the vulnerability affects the x86 emulator in Windows Defender, which “runs as SYSTEM, is unsandboxed, is enabled by default and remotely accessible to attackers.” … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/wYnLyYxtgrk/
Related news
- Microsoft overhauls security for publishing Edge extensions (source)
- Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks (source)
- Microsoft Issues Security Update Fixing 118 Flaws, Two Actively Exploited in the Wild (source)
- Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries (source)
- Week in review: Microsoft fixes two exploited zero-days, SOC teams are losing trust in security tools (source)
- Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates (source)
- WeChat devs introduced security flaws when they modded TLS, say researchers (source)
- Fake Google Meet conference errors push infostealing malware (source)
- Microsoft warns it lost some customer's security logs for a month (source)
- Microsoft lost some customers’ cloud security logs (source)