Microsoft company has released a security patch to fix a flaw and bug a in its Windows Malware Protection Engine that, if you left

Microsoft company has released a security patch to fix a flaw and bug a in its Windows Malware Protection Engine that, if you left Microsoft company has released a security patch to fix a flaw and bug a in its Windows Malware Protection Engine that, if you left untreated, can exploit a memory corruption error in the malware scanning tool and it can hack your computer system. UK’s National Cyber Security Centre discovered The bug in Malware Protection Engine The vulnerability (CVE-2017-11937) can affect systems running Windows 7, 8.1, 10 and A similar kind vulnerability was found by Tavis Ormandy, security researcher for Google’s Project Zero, in June this year. “According to Microsoft, the vulnerability can be controlled when the Malware Protection Engine scans a downloaded file to check for threats,” The registrar reported.In many systems, this happens automatically for all new files. Microsoft  requested all user to immediately install the new security patch which Microsoft has released. “There are many ways that that a hacker could place a specially crafted file in a location that is scanned by the Microsoft Malware Protection Engine. For example, a hacker check this also window download could use a website to deliver an especially malware crafted file to the victim’s system that is scanned when the website is viewed by the user,” the company said in its advisory FAQ. A hacker could also deliver a specially crafted malware file through an email message or in an Instant Messenger message that is scanned when the file is opened by the user. “In addition, a hacker could take advantage of websites that accept or host user-provided content, to upload a specially crafted file to a shared location that is scanned by the Malware Protection Engine running on the hosting server,” Microsoft noted.]]>