Security specialist Tavis Ormandy from Google once again discovered a vulnerability in the antivirus Windows Defender Microsoft. To the credit of the latter, she again released the patch extremely quickly.

Ormandy is part of the Google Project Zero security program, in which he found a vulnerability on June 9 and, without disclosing it publicly, reported this to Microsoft to give developers time to release the patch. The Project Zero policy states that vulnerabilities are subject to publication 90 days after they have been reported to developers.

Microsoft did not waste time and already released an update, so last Friday Ormandy published a description of the vulnerability.

Once again it was shown that without the sandbox the antivirus engine is vulnerable.

The bug affects the x86 emulator as part of the Windows Defender, which Microsoft intentionally did not include in the sandbox. Users are required to upgrade the Malware Protection Engine to version 1. 13903. You can check the version of Windows 10 in Options> Upgrade and Security> Windows Defender> Subsystem version. Windows 10 automatically receives Windows Defender updates by default.