. Microsoft Fixes Malware Protection Engine Bug - MajorGeeks

MajorGeeks.com - The front lines for cutting edge software.

All In One Tweaks

Antivirus & Malware

Drives (SSD, HDD, USB)

Graphics & Photos

MajorGeeks Windows Tweaks

Office & Productivity

· How To and Tutorials
· Life Hacks and Reviews
· Way Off Base
· MajorGeeks Deals
· News
· Off Base
· Reviews

· YouTube
· Facebook
· Instagram
· Twitter
· Pintrest
· RSS/XML Feeds

· News Blur
· Yahoo
· Symbaloo

· Top Freeware Picks
· Malware Removal
· Geektionary
· Useful Links
· About Us

· Copyright
· Privacy
· Terms of Service
· How to Uninstall

1. Smart Defrag

2. Macrium Reflect FREE Edition

3. Visual C++ Redistributable Runtimes AIO Repack

4. K-Lite Mega Codec Pack

5. Visual C++ Runtime Installer (All-In-One)

6. Sergei Strelec's WinPE

7. McAfee Removal Tool (MCPR)

8. MusicBee Portable

9. Microsoft Visual C++ 2015-2022 Redistributable Package

10. CrystalDiskInfo Portable

How to Create a Desktop Shortcut

What is a WebP Image?

How to Manage Virtual Memory (Pagefile) in Windows 10 /11

Enable, Disable, Manage, Delete or Create a System Restore Point

Backing Up Your Data Effectively: A Geek's Guide

How to Properly Use Microsoft System File Checker in Windows 11 and 10

Show Your Support for MajorGeeks a Donation

Resolving Strange PC Errors: The Role of RAM in System Performance

How to Fix Critical Process Died in Windows 10/11

Every Known Windows Terminal, Command Prompt and PowerShell Command

Microsoft Fixes Malware Protection Engine Bug

Posted by: Timothy Tibbetts on 12/08/2017 08:27 AM [ Comments ]

Microsoft has patched a bug in their Malware Protection Engine that could allow remote execution.

Microsoft has stated the bug, CVE-2017-11937 is considered "Critical" in severity and allows remote code execution on vulnerable products.

"A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption. An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."

The bug was first discovered by the UK National Cyber Security Centre (NCSC).

As long as your Windows Update is current, you are patched. More information is available on all the latest fixes here.

Comments

comments powered by Disqus

© 2000-2024 MajorGeeks.com

Powered by Contentteller® Business Edition