CVE-2017-11937

Name of the Vulnerable Software and Affected Versions Microsoft Malware Protection Engine (MPE) versions prior to the fixed version Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016, Windows Server, version 1709 Microsoft Exchange Server 2013 and 2016

Description The issue is related to errors when scanning a specially crafted file, allowing a remote attacker to execute arbitrary code and gain full control of the system. This can be achieved by exploiting the vulnerability with a specially formed file. The estimated number of potentially affected devices and details about real-world incidents are not provided.

Recommendations For Microsoft Malware Protection Engine (MPE), update to the latest version to resolve the issue. For Microsoft Forefront and Microsoft Defender on affected Windows versions, apply the recommended patch or update to the latest version. For Windows Server 2016, Windows Server, version 1709, and Microsoft Exchange Server 2013 and 2016, apply the recommended patch or update to the latest version. As a temporary workaround, consider restricting access to the Microsoft Malware Protection Engine until a patch is available.