M22-T5mj1
CVSS:
7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
False Positive:
f
Variants:
1
Year:
2021
Description
This strike exploits a heap buffer overflow vulnerability in the Microsoft Windows Defender.
The vulnerability is due to improper handling of input files.
An attacker could exploit this vulnerability by enticing a user to download a maliciously crafted file. When Microsoft Windows Defender attempts to scan the file it will trigger a heap buffer overflow.
*NOTE: This strike sends a malware sample which exploits this vulnerability.