This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2017-12-07
Product Malware Protection Engine Last view 2021-11-10
Version 1.1.14306.0 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:microsoft:malware_protection_engine

Activity : Overall

Related : CVE

  Date Alert Description
7.8 2021-11-10 CVE-2021-42298

Microsoft Defender Remote Code Execution Vulnerability

7.8 2021-08-12 CVE-2021-34471

Microsoft Windows Defender Elevation of Privilege Vulnerability

7.8 2021-07-14 CVE-2021-34522

Microsoft Defender Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-34464.

8.8 2021-06-08 CVE-2021-31985

Microsoft Defender Remote Code Execution Vulnerability

5.5 2021-06-08 CVE-2021-31978

Microsoft Defender Denial of Service Vulnerability

7.8 2017-12-08 CVE-2017-11940

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Server 2016, Windows Server, version 1709, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to remote code execution. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability". This is different than CVE-2017-11937.

7.8 2017-12-07 CVE-2017-11937

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Server 2016, Windows Server, version 1709, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to remote code execution. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability".

CWE : Common Weakness Enumeration

%idName
50% (2) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
25% (1) CWE-269 Improper Privilege Management
25% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')

Snort® IPS/IDS

Date Description
2018-01-11 Microsoft MsMpEng shrink compressed zip code execution attempt
RuleID : 45153 - Type : INDICATOR-COMPROMISE - Revision : 2
2018-01-11 Microsoft MsMpEng shrink compressed zip code execution attempt
RuleID : 45152 - Type : INDICATOR-COMPROMISE - Revision : 2

Nessus® Vulnerability Scanner

id Description
2017-12-08 Name: An antimalware application installed on the remote host is affected by a remo...
File: microsoft_mpeng_1_1_14405_2.nasl - Type: ACT_GATHER_INFO