Tag

Cve 2026 50656

All articles tagged with #cve 2026 50656

Microsoft patches RoguePlanet zero-day in Defender with engine update
technology1 day ago

Microsoft patches RoguePlanet zero-day in Defender with engine update

Microsoft released a fix for the RoguePlanet Defender zero-day (CVE-2026-50656) via the Malware Protection Engine update 1.1.26060.3008, following disclosure by Nightmare Eclipse. The race-condition flaw could spawn a SYSTEM-level command prompt on fully patched Windows 10/11, with a PoC claiming success regardless of real-time protection. Microsoft began patching on June 16 and has previously warned of legal action against researchers; this resolution follows a pattern of addressing multiple Windows zero-days disclosed by Nightmare Eclipse, including GreenPlasma, MiniPlasma, and YellowKey.

Defender Patch Sparks Disk-Destroying Attack Scenario
security1 day ago

Defender Patch Sparks Disk-Destroying Attack Scenario

Microsoft patched a Windows Defender zero-day (CVE-2026-50656), but researchers warn that new defense-in-depth changes connected to the Microsoft Malware Protection Engine and SpyNet could let an attacker exhaust disk space by writing massive data via a crafted SMB interaction. Exploitation would require a specialized SMB setup and a malicious file sequence; the fix is auto-installed, and the risk is currently described as a theoretical scenario amid tension between the researcher and Microsoft.

RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed
security1 day ago

RoguePlanet Privilege Escalation in Defender Finally Patched, No Action Needed

Microsoft issued security updates addressing RoguePlanet, a privilege-escalation flaw in the Microsoft Malware Protection Engine (mpengine.dll) that could spawn a SYSTEM shell. The fix arrives in Defender engine version 1.1.26060.3008 with defense-in-depth hardening. Disclosed by Chaotic Eclipse, RoguePlanet can be exploited on Windows systems with the June 2026 Patch Tuesday and works regardless of real-time protection. Microsoft says no customer action is required beyond automatic updates.