Η Microsoft φαίνεται ότι επιδιόρθωσε ένα κενό ασφαλείας στον windows Defender that circulated exploit on the Internet.
Η vulnerability implementationς απομακρυσμένου κώδικα στον Microsoft Defender (CVE-2021-1647) μετέτρεπε την εφαρμογή ασφαλείας των Windows σε εισβολέα, πυροδοτώντας την εκτέλεση του κακόβουλου λογισμικού κατά τη σάρωση των malware, αντί της απομόνωσης και της deletionhis.
This means that if a file is sent via email or a USB drive, the automatic scan will download to your computer, instead of isolating the malware, it will activate it immediately.
Exploit has been fixed in Patch Tuesday of the 12th and was one of 80 defects encountered by Microsoft developers.
To check if you are currently protected, simply check the scan engine version number in Windows Security. Open the application and check in Settings - About.
From the release 1.1.17700.4 and above the application is secure.
At least until the next 0day.
