RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed

TL;DR Summary
Microsoft issued security updates addressing RoguePlanet, a privilege-escalation flaw in the Microsoft Malware Protection Engine (mpengine.dll) that could spawn a SYSTEM shell. The fix arrives in Defender engine version 1.1.26060.3008 with defense-in-depth hardening. Disclosed by Chaotic Eclipse, RoguePlanet can be exploited on Windows systems with the June 2026 Patch Tuesday and works regardless of real-time protection. Microsoft says no customer action is required beyond automatic updates.
- Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges The Hacker News
- Microsoft closes book on Nightmare Eclipse's RoguePlanet zero-day The Register
- CISA: Windows BlueHammer flaw now exploited by ransomware gangs BleepingComputer
- Microsoft Releases Patch for RoguePlanet Defender Zero-Day Vulnerability CyberSecurityNews
- Microsoft fixes RoguePlanet zero-day in Defender Security Boulevard
Reading Insights
Total Reads
0
Unique Readers
2
Time Saved
1 min
vs 2 min read
Condensed
80%
328 → 66 words
Want the full story? Read the original article
Read on The Hacker News