Microsoft has patched a 12-year-old vulnerability in Microsoft Defender that, if exploited, could enable nonadministrative users to escalate privileges in the application. The vulnerability is a driver flaw in Microsoft Defender, formerly known as Windows Defender, which is the company's anti-spyware application for its operating systems.