CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
CVE-2017-0290 | Microsoft Malware Protection Engine Remote Code Execution Vulnerability | Windows 10 | Critical | 10-05-2017 |
Technical Information
Brief overview of the risk:
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file leading to memory corruption.
Detailed Information on the risk:
If the affected antimalware software has real-time protection turned on, the Microsoft Malware Protection Engine will scan files automatically, leading to exploitation of the vulnerability when the specially crafted file scanned. If real-time scanning is not enabled, the attacker would need to wait until a scheduled scan occurs in order for the vulnerability to be exploited. All systems running an affected version of antimalware software are primarily at risk.
The update addresses the vulnerability by correcting the manner in which the Microsoft Malware Protection Engine scans specially crafted files.Further information on this exploit is available at : CVE-2017-0290
Affected Software
Windows 10 Version 1511 for 32-bit SystemsWindows 10 Version 1511 for x64-based Systems
Windows 10 Version 1607 for x64-based Systems
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems