Did you know that Microsoft Defender or Windows Defender has been vulnerable, too, over the years?

Here are some notable past vulnerabilities that have occurred with Microsoft Defender (formerly Windows Defender):

1. **CVE-2017-0290**: Discovered in 2017, this remote code execution vulnerability allowed attackers to execute arbitrary code by crafting a specially designed file. Microsoft quickly patched it.
2. **CVE-2017-8543**: This 2017 vulnerability was related to a flaw in Windows Defender that could be exploited to gain elevated privileges on the system.
3. **CVE-2018-0986**: In 2018, a remote code execution vulnerability was found in the Windows Defender's Malware Protection Engine. This allowed an attacker to execute arbitrary code with system privileges.
4. **CVE-2019-1161**: In 2019, a privilege escalation vulnerability was discovered that could allow an attacker to gain administrative rights on the system.
5. **CVE-2019-1255**: Also in 2019, a denial of service vulnerability in the Windows Defender was identified, which could be exploited to make the system unresponsive.
6. **CVE-2020-6115**: This 2020 vulnerability in the Microsoft Defender's Anti-Malware Service allowed for a local privilege escalation.
7. **CVE-2021-1647**: A significant vulnerability from early 2021 where attackers could execute remote code on affected systems, prompting a swift patch from Microsoft.
8. **CVE-2021-28458**: Another 2021 vulnerability involving a memory corruption issue that could allow an attacker to gain system privileges.

These vulnerabilities have been patched by Microsoft as part of their regular security updates to maintain the integrity and security of their antivirus software.

#cybersecurity #vulnerability #microsoft #smeitnews

свернуть