15 matches found
Security Update for Forefront Endpoint Protection (February 2021)
The Malware Protection Engine version of Forefront Endpoint Protection installed on the remote Windows host is equal or prior to 1.1.17700.4. It is, therefore, affected by a unspecified privilege escalation vulnerability. An authenticated, local attacker can exploit this to gain administrator...
Security Update for Forefront Endpoint Protection (January 2021)
The Malware Protection Engine version of Forefront Endpoint Protection installed on the remote Windows host is prior to 1.1.17600.5. It is, therefore, affected by an unspecified remote code execution vulnerability. An authenticated, local attacker can exploit this to bypass authentication and...
KLA11747 Multiple vulnerabilities in Mycrosoft System Center
Multiple vulnerabilities were found in Mycrosoft System Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender can be exploited remotely via specially crafted comma...
CVE-2018-0986
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune...
CVE-2018-0986
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune...
Remote code execution
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune...
CVE-2018-0986
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune...
Microsoft Malware Protection Engine < 1.1.14405.2 RCE
The version of Microsoft Malware Protection Engine MMPE installed on the remote Windows host is prior to 1.1.14405.2. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has checked if a vulnerable version of MMPE is being used by any of the following application...
Microsoft Malware Protection Engine < 1.1.13903 RCE
The version of Microsoft Malware Protection Engine MMPE installed on the remote Windows host is prior to 1.1.13903.0. It is, therefore, affected by a remote code execution vulnerability due to improper handling of files during scanning. An unauthenticated, remote attacker can exploit this, via a...
Microsoft released a“denial of service vulnerability”fixes-bug warning-the black bar safety net
In patch 5 9 IE vulnerability after Microsoft finally for its security software to plug a security vulnerability. It is reported that the vulnerability may be in use“Malware Protection engine”Malware Protection Engineto scan when triggered. Then, the attacker can use it to launch denial of...
Microsoft Forefront Endpoint Protection / System Center Endpoint Protection / Anti-malware Client Detection and Status
Microsoft Forefront Endpoint Protection, or another antimalware product from Microsoft, is installed on the remote host. However, there is a problem with the installation; either its services are not running or its engine and/or virus definitions are out of date. C Tenable Network Security, Inc...
Microsoft Products Malware Protection Engine权限提升漏洞
BUGTRAQ ID: 46540 CVE ID: CVE-2011-0037 Microsoft Malware Protection Engine是微软反恶意软件产品的一部分。 Malware Protection Engine产品的实现上存在设计问题,本地攻击者可利用此漏洞提升权限。 此漏洞源于Microsoft Malware Protection Engine在扫描时的错误,可通过设置注册表项的特制值提升权限。 Microsoft Microsoft Forefront Endpoint Protection 2010 Microsoft Microsoft Forefront...
Code injection
Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool MSRT, Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain privileges via a crafted val...
CVE-2011-0037
CVE-2011-0037 affects Microsoft Malware Protection Engine (MMPE) prior to 1.1.6603.0, used in MSRT, Windows Defender, Security Essentials, Forefront products, and related tools. The vulnerability allows local privilege escalation through a crafted value of an unspecified user registry key. The do...
Microsoft Issues Fix for Bug in Malware Protection Engine
Microsoft has issued an update to its core malware protection engine that fixes a bug that could allow an attacker to gain LocalSystem privileges on a vulnerable machine if a specific set of odd conditions exist. The vulnerability in the Microsoft Malware Protection Engine is a privilege-escalati...