PCWorld reports that Windows Notepad’s new Markdown support feature has introduced a serious remote code execution vulnerability with a high CVSS score of 8.8/7.7. The security flaw allows malicious ...

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...

A disgruntled researcher released a second zero-day Windows Defender exploit, dubbed RedSun, shortly after Microsoft patched ...

A set of previously unknown flaws in Windows Graphics Device Interface (GDI) that could enable remote code execution and information disclosure has been revealed after Microsoft released fixes. These ...

Yesterday was Patch Tuesday for September, and Microsoft provided security updates that address 80 new vulnerabilities. Microsoft categorized eight of the vulnerabilities in Windows and Office as ...

Windows has a zero-day vulnerability that allows attackers to escalate their privileges. A patch is not yet available.

A vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine. The security issue is ...

Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web content, aiming to prevent potentially risky code from executing. As Microsoft ...