|
Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135) Vulnerability Scan
Vulnerability Scan Summary Acertains the version of Malware Protection Engine
Detailed Explanation for this Vulnerability Test
Synopsis :
Arbitrary code can be executed on the remote host through the AntiMalware program.
Description :
The remote host is running a version of Windows Malware Protection engine which
is vulnerable to a bug in the PDF file handling routine which may allow an
attacker execute arbitrary code on the remote host by sending a specially crafted
file.
Solution :
Microsoft has released a set of patches for Windows Defender and Live OneCare:
http://www.microsoft.com/technet/security/bulletin/ms07-010.mspx
Threat Level:
High / CVSS Base Score : 8.0
(AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|