Windows Defender 0-day patch still lets attackers fill a victim's hard disk
Ars Technica·medium signal
Ars Technica reports that Microsoft's fix for a Windows Defender zero-day, disclosed by the researcher operating as NightmareEclipse, leaves an avenue for attackers to exhaust disk space. The ongoing public feud between the researcher and Microsoft shows no sign of resolving — a reminder that a shipped patch and a closed vulnerability class are different things.