Close Menu
Şevket Ayaksız

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Microsoft tests a revamped Windows Search experience

    Temmuz 19, 2026

    Anker’s 20,000mAh power bank with built-in USB-C cable drops to $38

    Temmuz 19, 2026

    Microsoft urges users to install Windows updates within three days

    Temmuz 19, 2026
    Facebook X (Twitter) Instagram
    • software
    • Gadgets
    Facebook X (Twitter) Instagram
    Şevket AyaksızŞevket Ayaksız
    Subscribe
    • Home
    • Technology

      Innocn’s 49-inch ultrawide monitor hits a record-low $500 for Prime Day

      Temmuz 12, 2026

      Sony 1000X The Collexion vs. Bowers & Wilkins Px8 S2: Which Premium Headphones Come Out on Top?

      Temmuz 11, 2026

      SpaceX Eyes Massive Starlink Expansion With Plans for 100,000 Additional Satellites

      Temmuz 11, 2026

      Nvidia celebrates 30 years of GPUs with free GeForce trading cards

      Temmuz 10, 2026

      Acer’s 7-in-1 wireless charging station drops to $50

      Temmuz 9, 2026
    • Adobe
    • Microsoft
    • java
    • Oracle
    Şevket Ayaksız
    Anasayfa » Microsoft’s RoguePlanet fix may have introduced a new security flaw
    microsoft

    Microsoft’s RoguePlanet fix may have introduced a new security flaw

    By ayaksızTemmuz 19, 2026Yorum yapılmamış2 Mins Read
    Facebook Twitter Pinterest LinkedIn Tumblr Email
    Share
    Facebook Twitter LinkedIn Pinterest Email

    New Flaw Reportedly Found in Microsoft Defender Patch for RoguePlanet

    Just days after Microsoft released a security update to fix the critical RoguePlanet zero-day vulnerability, a cybersecurity researcher claims the patch has introduced another serious issue.

    According to the researcher known as Nightmare-Eclipse, the update to Microsoft’s Malware Protection Engine contains a flaw that can potentially be abused to fill a victim’s storage drive, creating a denial-of-service (DoS) condition.

    A New Vulnerability in the Patch

    The original RoguePlanet (CVE-2026-50656) vulnerability allowed attackers to escalate privileges and gain full control of affected Windows systems. Microsoft recently addressed the flaw by updating Microsoft Defender’s scanning engine.

    However, Nightmare-Eclipse says the new engine contains an unexpected weakness related to how Defender caches files during malware scanning.

    Normally, Microsoft Defender enforces strict file-size limits when scanning and quarantining files to prevent excessive resource usage. According to the researcher, one exception bypasses those safeguards, allowing certain files to be cached locally regardless of their size.

    How the Exploit Works

    To demonstrate the issue, Nightmare-Eclipse published a proof-of-concept exploit.

    The researcher explains that by placing a specially crafted file on an SMB (Server Message Block) network share, any Windows computer that accesses the share can be tricked into repeatedly caching the file through Microsoft Defender.

    As the cached data continues to grow, the target system’s available disk space is gradually exhausted, potentially rendering the machine unstable or unusable.

    Unlike the original RoguePlanet exploit, this issue appears to result in a denial-of-service attack rather than privilege escalation.

    Affected Systems

    According to testing performed by the researcher, the vulnerability has been successfully reproduced on:

    • Windows 11 version 25H2
    • Windows Server 2025

    It remains unclear whether additional Windows versions are also affected.

    Microsoft Yet to Respond

    At the time of writing, Microsoft has not publicly acknowledged the newly reported issue or confirmed whether it is investigating the claim.

    If verified, the discovery would represent an unusual situation where a security update intended to eliminate one critical vulnerability inadvertently introduces another.

    No Patch Available Yet

    For now, there is no official workaround or security update addressing the newly reported flaw.

    As with the original RoguePlanet disclosure, users are advised to keep Microsoft Defender and Windows fully updated while monitoring Microsoft’s security advisories for any future fixes or guidance regarding this latest reported vulnerability.

    Post Views: 5
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    ayaksız
    • Website

    Related Posts

    Microsoft urges users to install Windows updates within three days

    Temmuz 19, 2026

    Microsoft confirms Secure Boot certificate update issues on some PCs

    Temmuz 14, 2026

    Microsoft warns of destructive GigaWiper malware targeting specific victims

    Temmuz 13, 2026
    Add A Comment

    Comments are closed.

    Editors Picks
    8.5

    Apple Planning Big Mac Redesign and Half-Sized Old Mac

    Ocak 5, 2021

    Autonomous Driving Startup Attracts Chinese Investor

    Ocak 5, 2021

    Onboard Cameras Allow Disabled Quadcopters to Fly

    Ocak 5, 2021
    Top Reviews
    9.1

    Review: T-Mobile Winning 5G Race Around the World

    By sevketayaksiz
    8.9

    Samsung Galaxy S21 Ultra Review: the New King of Android Phones

    By sevketayaksiz
    8.9

    Xiaomi Mi 10: New Variant with Snapdragon 870 Review

    By sevketayaksiz
    Advertisement
    Demo
    Şevket Ayaksız
    Facebook X (Twitter) Instagram YouTube
    • Home
    • Adobe
    • microsoft
    • java
    • Oracle
    • Contact
    © 2026 Theme Designed by Şevket Ayaksız.

    Type above and press Enter to search. Press Esc to cancel.