Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Microsoft Malware Protection Engine on Windows Defender Multiple Vulnerabilities

Information

Severity

Severity

Critical

Family

Family

Windows

CVSSv2 Base

CVSSv2 Base

9.3

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

6 years ago

Modified

Modified

4 years ago

Share

Summary

This host is missing an important security update according to Microsoft Security Updates released for Microsoft Malware Protection Engine dated 05-25-2017

Insight

Insight

Multiple flaws are due to, - Multiple errors when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to a scan timeout. - Multiple errors when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption.

Affected Software

Affected Software

Microsoft Windows 8.1 Microsoft Windows 7 SP1 Microsoft Windows 10 x32/x64 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Server 2016 x64 Microsoft Windows Server 2008 SP2 Microsoft Windows Server 2008 R2 SP1 Microsoft Windows 10 Version 1511 x32/x64 Microsoft Windows 10 Version 1607 x32/x64 Microsoft Windows 10 Version 1703 x32/x64

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

Run the Windows Update to update the malware protection engine to the latest version available. Typically, no action is required as the built-in mechanism for the automatic detection and deployment of updates will apply the update itself.

Common Vulnerabilities and Exposures (CVE)

References