Microsoft Defender RedSun Zero-Day Exploit Grants SYSTEM Privileges

A researcher identified as "Chaotic Eclipse" published a proof-of-concept (PoC) exploit for a Microsoft Defender zero-day vulnerability named "RedSun," which grants SYSTEM privileges. This is the second Microsoft Defender zero-day PoC released by the researcher in the past two weeks, framed as a protest against Microsoft's handling of cybersecurity researcher collaborations. The exploit targets Microsoft Defender, though no specific CVE ID or technical attack vector was disclosed in the report. The PoC demonstrates the ability to escalate privileges to the highest level on affected systems. No patch or mitigation steps were mentioned as available at the time of publication.