A patch Microsoft released Wednesday to fix a zero-day vulnerability in its Defender security engine can cause Windows machines to write files large enough to completely consume available disk space, said the researcher who discovered the flaw.
RoguePlanet, tracked as CVE-2026-50656, went public in june when NightmareEclipse, the pseudonymous name used by a researcher, revealed it along with code for exploiting it. The vulnerability allows remote attackers to gain administrative control of Windows 10 and Windows 11 machines, even when real-time protection has been disabled. In recent months, the anonymous researcher has published a handful of other zero-days that have sent Microsoft scrambling to develop patches.
Write files of unlimited size
microsoft saying On Wednesday it patched RoguePlanet with an update to Microsoft’s malware protection engine, which is used by the Defender antivirus application. The solution will be downloaded and installed automatically without users having to take any action. Wednesday’s update also includes “defense-in-depth updates to help improve security-related features.”
Read full article
Comments
