Microsoft quietly fixes another “extremely bad vulnerability” in Windows Defender

Microsoft has quietly pushed out another fix for their virus scanning engine in Windows Defender, the MsMpEng malware protection engine.

Just like the last “crazy bad” vulnerability, this one was also discovered by Google’s Project Zero researcher Tavis Ormandy, but this time he privately disclosed it to Microsoft, showing the criticism he attracted last time for his public disclosure has had some effect.

The vulnerability would allow applications executed in MsMpEng’s emulator to control the emulator to achieve all kinds of mischief, including remote code execution when Windows Defender scanned an executable sent by email.

“MsMpEng includes a full system x86 emulator that is used to execute any untrusted files that look like PE executables. The emulator runs as NT AUTHORITY\SYSTEM and isn’t sandboxed. Browsing the list of win32 APIs that the emulator supports, I noticed ntdll!NtControlChannel, an ioctl-like routine that allows emulated code to control the emulator.” 

Want More? - Click Here

Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

Latest Content

  • Microsoft Xbox One 500GB Console - Gears of War: Ultimate Edition Bundle - 139.00
    Written by
    Microsoft Xbox One 500GB Console - Gears of War: Ultimate Edition Bundle - 139.00 That's not a typo folks. It's a re-furb unit but…
    Read more...
  • Windows Patch Cleaner
    Written by
    Windows Patch Cleaner This is one of those utilities I will be installing…
    Read more...
  • The Coolest Thing On Instagram I Have Ever Seen
    Written by
    The Coolest Thing On Instagram I Have Ever Seen Honestly, this might he coolest thing I have ever seen…
    Read more...
  • Retired Husband (Humor) WalMart is Involved.
    Written by
    Retired Husband (Humor) WalMart is Involved. It's been a REALLY crappy week so far and this…
    Read more...
  • Outlook known issues in the June 2017 security updates
    Written by
    Outlook known issues in the June 2017 security updates Well folks, these issues cover every version of Outlook back…
    Read more...

Visit the Digitalsmind Video YouTube Page!

Did you know we have a video page on YouTube? 

Well... WE DO! 

Check us out! 

- Our Video page.