CVE-2018-15452

Name of the Vulnerable Software and Affected Versions: Cisco Advanced Malware Protection (AMP) for Endpoints on Windows (affected versions not specified)

Description: A vulnerability in the DLL loading component could allow an authenticated, local attacker to disable system scanning services by exploiting improper validation of resources loaded by a system process at run time. The attacker would need administrative credentials on the Windows system and could craft a malicious DLL file to achieve this. A successful exploit could allow the attacker to disable the targeted system's scanning services, preventing the system from being protected from further intrusion.

Recommendations: To resolve the issue, update the Cisco Advanced Malware Protection (AMP) for Endpoints on Windows to a version that includes the fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.