CVE-2018-0986: A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory…

high8.8CVSS 3.1

AVNACLPRNUIRSUCHIHAH

EXPLOIT

A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune Endpoint Protection, Microsoft Security Essentials, Microsoft System Center Endpoint Protection, Microsoft Exchange Server, Microsoft System Center, Microsoft Forefront Endpoint Protection.

Affected

67 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	exchange_server	—	—
microsoft	exchange_server	—	—
microsoft	microsoft_exchange_server	—	—
microsoft	microsoft_exchange_server	—	—
microsoft	microsoft_forefront_endpoint_protection	—	—
microsoft	microsoft_security_essentials	—	—
microsoft	microsoft_system_center	—	—
microsoft	microsoft_system_center	—	—
microsoft	microsoft_system_center_endpoint_protection	—	—
microsoft	system_center_endpoint_protection	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—
microsoft	windows_defender	—	—

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

vulncheck8.8HIGH