Lucene search

[email protected]NVD:CVE-2014-2779

HistoryJun 18, 2014 - 4:55 p.m.

CVE-2014-2779

2014-06-1816:55:07

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.01

Percentile

84.2%

JSON

mpengine.dll in Microsoft Malware Protection Engine before 1.1.10701.0 allows remote attackers to cause a denial of service (system hang) via a crafted file.

Affected configurations

Nvd

Node

microsoftmalware_protection_engineRange≤1.1.10600.0

VendorProductVersionCPE
microsoftmalware_protection_engine*cpe:2.3:a:microsoft:malware_protection_engine:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	malware_protection_engine	*	cpe:2.3:a:microsoft:malware_protection_engine::::::::

References

secunia.com/advisories/59337

www.securityfocus.com/bid/68076

www.securitytracker.com/id/1030438

technet.microsoft.com/library/security/2974294

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.01

Percentile

84.2%

JSON

Related for NVD:CVE-2014-2779

nessus1 threatpost1 cve1 prion1 cvelist1