{"id":349598,"date":"2026-06-12T09:25:43","date_gmt":"2026-06-12T03:55:43","guid":{"rendered":"https:\/\/ebiztoday.news\/?p=349598"},"modified":"2026-06-12T09:25:43","modified_gmt":"2026-06-12T03:55:43","slug":"locked-in-heated-rivalry-with-researcher-microsoft-fixes-0-day-they-disclosed","status":"publish","type":"post","link":"https:\/\/ebiztoday.news\/index.php\/2026\/06\/12\/locked-in-heated-rivalry-with-researcher-microsoft-fixes-0-day-they-disclosed\/","title":{"rendered":"Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed"},"content":{"rendered":"<div>\n<p>Tuesday\u2019s patch bundle also fixed <a href=\"https:\/\/web.archive.org\/web\/20260521144855\/https:\/\/github.com\/Nightmare-Eclipse\/MiniPlasma\">MiniPlasma<\/a>, a separate vulnerability disclosed by Nightmare Eclipse. Microsoft said in an email that the vulnerability is tracked as CVE-2020-17103, a vulnerability Microsoft first fixed six years ago. Meaning MiniPlasma was the results of a regression or an incomplete patch in its initial form. The corporate is within the means of updating Tuesday\u2019s bulletin to notice the republication.<\/p>\n<p>Microsoft has yet to release patches for other vulnerabilities disclosed by Nightmare Eclipse. The corporate did provide manual instructions for mitigating YellowKey, a vulnerability that permits attackers to defeat Bitlocker full-disk encryption. That could possibly be a boon when attackers have physical access to a tool (the precise scenario Bitlocker is designed to guard against). The corporate has yet to repair the underlying explanation for the vulnerability.<\/p>\n<p>The status of other vulnerabilities disclosed by Nightmare Eclipse are also unclear in the mean time. The researcher named one vulnerability, present in Windows Defender <a href=\"lhttps:\/\/web.archive.org\/web\/20260520184528\/https:\/\/github.com\/Nightmare-Eclipse\/RedSun\">RedSun<\/a>. One other, named BlueHammer, can be an area privilege escalation flaw that gives SYSTEM rights.<\/p>\n<p>Over the past few months, Nightmare Eclipse has taken multiple potshots at Microsoft. The particular criticisms remain unclear, but many make references to complaints concerning the company\u2019s vulnerability disclosure program. Microsoft, in turn, has <a href=\"https:\/\/www.microsoft.com\/en-us\/msrc\/blog\/2026\/05\/a-shared-responsibility-protecting-customers-through-coordinated-vulnerability-disclosure\">publicly railed<\/a> against the researcher for \u201cnot responsibly\u201d disclosing the vulnerabilities and made a vailed reference to the opportunity of pursuing legal motion. After a public backlash, Microsoft later relented and vowed no such legal motion would occur.<\/p>\n<p>On Tuesday, Nightmare Eclipse <a href=\"https:\/\/deadeclipse666.blogspot.com\">published<\/a> exploit code for a brand new Windows vulnerability. It\u2019s a race condition that targets Defender.<\/p>\n<p>Tuesday\u2019s patch batch included fixes for roughly 200 vulnerabilities. Notwithstanding the looks that MiniPlasma was fixed, two of them were also confirmed as zero-days.<\/p>\n<p><em>Post updated to incorporate information Microsoft provided after initial publication of this post.<\/em><\/p>\n<\/p><\/div>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Tuesday\u2019s patch bundle also fixed MiniPlasma, a separate vulnerability disclosed by Nightmare Eclipse. Microsoft said in an email that the vulnerability is tracked as CVE-2020-17103, a vulnerability Microsoft first fixed six years ago. Meaning MiniPlasma was the results of a regression or an incomplete patch in its initial form. The corporate is within the means [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":349599,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[24170,12815,4605,6385,8200,92,11672,23274],"class_list":["post-349598","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology","tag-0day","tag-disclosed","tag-fixes","tag-heated","tag-locked","tag-microsoft","tag-researcher","tag-rivalry"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/posts\/349598","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/comments?post=349598"}],"version-history":[{"count":2,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/posts\/349598\/revisions"}],"predecessor-version":[{"id":349601,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/posts\/349598\/revisions\/349601"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/media\/349599"}],"wp:attachment":[{"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/media?parent=349598"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/categories?post=349598"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ebiztoday.news\/index.php\/wp-json\/wp\/v2\/tags?post=349598"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}