Viss6d ago

h/t @nyanbinary

so let me get this straight
microsoft defender, the built-in antivirus tool for windows

has a heap based buffer overflow that leads to remote code execution

if you get it to scan a file, and that file is crafted the right way.

the antivirus tool is the carrier for the execution of malware.

Show threadARGVMI~1.PIF

@Viss @nyanbinary

Ah good. Now I don't have to deal with code signing my app any more. 😂

May 21 at 12:24amWeb
Show threadNo Way6d ago
@argv_minus_one @Viss @nyanbinary I wonder if I can use this to configure winrm so I can remote in and fix the random shit Microsoft keeps breaking.