"A Zero-Day Vulnerability (And PoC) to Blind Defenses Relying on Windows Event Logs"
A zero-day vulnerability, discovered by a security researcher named Florian and reported to Microsoft, has the potential to crash the Windows Event Log service on all supported (and some legacy) versions of Windows. The exploitation of this vulnerability by a malicious actor could cause significant problems for enterprise defenders. The vulnerability has not yet been patched, but in the meantime, the researcher has received permission from the company to publish a Proof-of-Concept (PoC) exploit. This article continues to discuss the potential exploitation and impact of the zero-day vulnerability.
Submitted by grigby1
Submitted by Gregory Rigby
on