TECH NEWS

This Microsoft Defender zero-day could give hackers unprecedented access to your system

https://cdn.mos.cms.futurecdn.net/uTLwBhC26YCauAq8Swffd8-1080-80.jpg
  • Chaotic Eclipse drops seventh Windows zero‑day, “RoguePlanet,” hours after Patch Tuesday
  • Race‑condition exploit grants SYSTEM privileges; PoC confirmed viable by ThreatLocker
  • Researcher continues public disclosures amid feud with Microsoft, following BlueHammer, RedSun, UnDefend, YellowKey, GreenPlasma, and MiniPlasma

Chaotic Eclipse, the mysterious security researcher with a Microsoft grudge, disclosed another zero-day vulnerability in a fully patched Windows 11 device, just hours after Microsoft released its recent record June Patch Tuesday cumulative update.

This is the seventh zero-day exploit Chaotic Eclipse has disclosed in a matter of months. Called “RoguePlanet”, this bug is described as a “race condition vulnerability” that grants attackers SYSTEM privileges on fully patched Windows 10 and Windows 11 devices.

The researcher published a Proof-of-Concept (PoC) exploit earlier this week in a self-hosted Git, after saying that both GitHub and GitLab repositories hosting earlier work got removed by Microsoft.

Performing as described

"The exploit is a race condition, so...

Copyright of this story solely belongs to techradar.com. To see the full text click HERE

Read more