#race-condition
#race-condition
[ follow ]
#windows-kernel #cve-2025-62215 #elevation-of-privilege #double-free #privilege-escalation #zero-day #edr-bypass
Information security
fromTechzine Global
2 months agoNovel attack technique freezes endpoint security via Windows function
EDR-Freeze leverages WerFaultSecure and MiniDumpWriteDump race conditions to suspend EDR processes from user mode, effectively disabling endpoint security without exploiting vulnerabilities.
[ Load more ]