Social Icons

Monday, December 11, 2017

A critical flaw in Windows Defender can hack PC, remotely



Simply send a trapped file by e-mail to gain full control of the machine. Fortunately, a patch has already been released by Microsoft. It is installed automatically.

Microsoft has released an emergency patch for its Malware Protection Engine, a technology that is embedded in Windows Defender and various other solutions (Forefront, Endpoint Protection, Exchange Server, Security Essentials, Intune). If the publisher takes care of spreading this patch just a few days of the December Patch Tuesday, it is because the risk is particularly high.


The security vulnerability found in this software (CVE-2017-11937) causes memory corruption and allows an attacker to remotely execute code and gain full control of the machine. To exploit it, all you have to do is create a trap file and have it scanned by the Malware Protection Engine. What happens when the automatic protection mode is activated and when the user, for example, opens an attachment in an email or instant message, uploads a file on a sharing network or consults a website.

Fortunately, the patch is installed automatically by Windows. In theory, there is nothing to do. It is still recommended to check that the update has been installed. To do this, go to "Settings -> Windows Defender" and look at the "engine version" which should be 1.1.14405.2.






Younes Derfoufi

No comments:

Post a Comment

Category Of Mobile Courses

Actualités (644) Adsense (1) Affiliation (1) Algebraic Topology (2) Algorithmic (1) all-news (30) Android (5) Android App (8) Android app without code (4) Android Apps (256) Android Development (4) Android download (2) Android OS (3) AngularJS (1) Automata theory and formal language (5) C programming (5) Category and Functor (8) CMS (3) Computer Glossary (18) Create Mobile App With Ionic Framework (2) CSS (2) CSS-Cascading-Style-Sheets (4) Developpement Java (13) Differential Geometry (1) Django-Python-Framework (9) dropshiping (26) Earn Money by Internet (4) Emplois (23) Framework php (2) Fraud (2) HTML (7) Java For Beginners (10) Javascript (12) Kotlin Programming Language (8) Kotlin For Mobile Android (1) Linux Download (2) Marketing (5) Mobile (3) Mobile Courses (4) Mobile Marketing (4) MoneyGram (1) News (721) Node.js (5) Open Source (1) Photoshop (1) Protect Computer (1) Python (35) Python BeautifulSoup (1) Python For Data Science (2) Python PyQt (4) Python Reference (1) Python-Books (6) Python-DVD-Training (1) Python-Exercises (231) Python-Framework (1) Python-IDE (1) Python-Kivy-Framework (2) Python-Modules (1) Python-pdf (2) Python-pyQt (1) Référencement (2) Script PHP (2) Security (6) SEO (1) Snipping Tool: Faq (1) Social Networks (1) Source Code (1) Statistics With SPSS (2) Surveillance Software (1) Travail à domicile (6) Tutoriels php en vidéos (2) Tutoriels-MySql (6) tutoriels-php (19) Utilitaires (1) VPS (1) Web Hosting (1) Webcam (1) Webmarketing (11) Western Union (1) Windows 10 (1) Windows 7 (4) Windows 7 Faq (2) Windows 8 (1) Windows Accessories (1) Windows Download (8) Windows Drivers (1) Windows Fonts (1) Windows Power Shell (2) Windows Registry (2) Windows Security (18) Windows Software (2) Windows Spyware (2) Windows utilities (3) Windows Virus (2) Windows Vista (3) Windows Wireless (1) Windows xp (1) Wordpress (1)
 

Sample text

Sample Text

 
Blogger Templates