Description:
A researcher has published a proof-of-concept (PoC) exploit code for a zero-day (known as "UnDefend") in Microsoft Windows Defender. This vulnerability could allow an attacker to block Microsoft Defender definition updates on systems where Microsoft Windows Defender is enabled.
Reports indicated that a denial-of-service vulnerability is being exploited in the wild. System administrators are advised to follow the recommendations provided by the vendors to mitigate the elevated risk of cyber attacks.
Affected Systems:
- Microsoft Windows 10, 11 with Microsoft Defender enabled
- Microsoft Windows Server with Microsoft Defender enabled
Impact:
Successful exploitation of the vulnerability could lead to denial of service on an affected system.
Recommendation:
System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.
More Information:
- https://github.com/Nightmare-Eclipse/UnDefend
