Microsoft Releases Security Updates for its Malware Protection Engine
by CIRT Team
Description: A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption. An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Impact: A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
Mitigation: Updates are available. Please see the references or vendor advisory for more information.
26 Oct 2023 - Security Advisories & Alerts