Most insane Windows security hole ever

By: Maxwell (max.delete@this.a.com),
Room: Moderated Discussions
The Intel ME backdoor is tame compared with this:

MsMpEng: Remotely Exploitable Type Confusion in Windows 8, 8.1, 10, Windows Server, SCEP, Microsoft Security Essentials, and more.

https://bugs.chromium.org/p/project-zero/issues/detail?id=1252&desc=5

"Mpengine is a vast and complex attack surface, comprising of handlers for dozens of esoteric archive formats, executable packers and cryptors, full system emulators and interpreters for various architectures and languages, and so on. All of this code is accessible to remote attackers."

Crazy! What were they thinking?

Max
 Next Post in Thread >
Thread (3 posts)
TopicPosted ByPosted
Most insane Windows security hole everMaxwell
  Most insane Windows security hole everVertexMaster
    More is Less secureJohn H