Microsoft patches zero-day found in Hacking Team data dump
Trend Micro notes Redmond’s ‘unusual’ out-of-band fix for critical privilege-escalation vuln
Microsoft has issued an "unusual" out-of-band patch for a critical zero-day vulnerability exposed by the 400GB data theft experienced by Italian spyware-maker Hacking Team, according to a blog post by Trend Micro.
Trend Micro said it verified the flaw and reported it to Microsoft. If exploited, the vuln would have allowed attackers to "infect victims' systems with rootkits or bootkits under unexpected system privileges, without any notification", Trend Micro said.
"The leaked documents stated that the memory corruption of atmfd.dll (an Adobe kernel module) would lead to privilege escalation on Windows 8.1 x64," the blog post read. "This is a complete exploit which allows even an escape of the Chrome sandbox through a kernel bug."
Milan-based Hacking Team has been criticised by privacy advocates for making software that allows surveillance of devices through a number of zero-day exploits. Its customers are law enforcement agencies and governments. The firm had previously claimed it did not do business with oppressive regimes, but the data dump revealed Hacking Team to have a number of government clients that have been criticised by human-rights groups, including Sudan.