Microsoft has rolled-out security updates to fix a critical remote code execution flaw affecting Windows Defender and other anti-malware products.
Ahead of April’s Patch Tuesday, Microsoft has released patches for the critical flaw, which affects Microsoft Malware Protection Engine, or mpengine.dll, the core of Windows Defender in Windows 10.
“An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system,” warns Microsoft.
“An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”
Google Project Zero researcher Thomas Dullien, aka Halvar Flake, discovered that attackers can trigger a memory-corruption issue in the engine if they can get Windows Defender and other affected security products to scan a specially-crafted file.
http://www.zdnet.com/article/windows-10-security-microsoft-patches-critical-flaw-in-windows-defender/
OnePlus 6 specifications revealed
Recent Posts
Infinix HOT 50 Launches in Malaysia with Powerful
Samsung One UI 7 Beta Brings AI Security
Realme Offers Price Cuts on 2024 Smartphones for
Nubia Z70 Ultra Launches in Malaysia with Cutting-Edge
Realme Note 60 Offers Durability and Power at
Volvo Launches Updated Heavy-Duty Trucks in Malaysia
Buz Launches Campaign Highlighting Power of Voice Messaging
Samsung Galaxy A16 5G Offers 6-Year Updates and
Categories
Archives
Stats
- 216,887
- 1,810,260