Microsoft исправила уязвимость RoguePlanet. Исследователь утверждает, что патч опасен
Microsoft has issued a patch for the recently discovered zero-day vulnerability known as RoguePlanet in Microsoft Defender. However, security researcher Nightmare Eclipse claims that the update could introduce a new issue allowing attackers to exhaust available disk space by forcing Defender to write large files. The vulnerability, identified as CVE-2026-50656 with a CVSS score of 7.8, involves a race condition in Defender that can escalate privileges to SYSTEM level on fully updated Windows 10 and 11 systems. While the patch was automatically deployed via an update to the Microsoft Malware Protection Engine, Nightmare Eclipse reports that additional defensive measures included in the update might inadvertently create a vector for denial-of-service (DoS) attacks.