PT-2017-18409 · Microsoft · Windows Server 2008+6

Publicado

2017-06-29

Atualizado

2019-10-03

CVE-2017-8558

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Malware Protection Engine versions (affected versions not specified)

Description The issue is related to the Microsoft Malware Protection Engine, which does not properly scan a specially crafted file, leading to memory corruption. This can occur on various 32-bit versions of Microsoft Windows operating systems, including Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2017-8558

Produtos afetados

Malware Protection Engine

Windows 10

Windows 7

Windows 8.1

Windows Rt 8.1

Windows Server 2008

Windows Server 2012

PT-2017-18409 · Microsoft · Windows Server 2008+6

CVE-2017-8558

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7