Vulnerability in Microsoft Anti-malware engine

azasadny

Moved to ten*****s.com
VIP Member
Guru
Messages
1,935
Location
Wyandotte, MI (South of Detroit)
[h=1]Serious vulnerability in Microsoft’s anti-malware engine[/h]​Yesterday, Microsoft released a security advisory informing customers about a vulnerability in the Microsoft Malware Protection Engine, which is found in several products including Windows Defender, Microsoft Security Essentials, and Microsoft Malicious Software Removal Tool. An attacker could exploit the vulnerability by sending a user a specially crafted file which, once scanned by the Malware Protection Engine, causes the engine to time out. A successful exploit of the bug would essentially stop the “Microsoft Malware Protection Engine from monitoring affected systems until the specially crafted file is manually removed,” according to the advisory.
There are no known exploits of the vulnerability in the wild. The bug was privately disclosed to Microsoft by Google engineer Tavis Ormandy. Microsoft say a patch will be pushed out to customers within 48 hours, with “typically no action required to install the update” due to built-in automation within the associated products.
 

My Computer

System One

  • OS
    Win 10 Pro 64bit
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Home built Intel i7-3770k-based system
    CPU
    Intel i7-3770k, Overclocked to 4.6GHz (46x100) with Corsair H110i GT cooler
    Motherboard
    ASRock Z77 OC Formula 2.30 BIOS
    Memory
    32GB DDR3 2133 Corsair Vengeance Pro
    Graphics Card(s)
    GeForce GTX 980ti SC ACS 6GB DDR5 by EVGA
    Sound Card
    Creative Sound Blaster X-Fi Titanium HD, Corsair SP2500 speakers and subwoofer
    Monitor(s) Displays
    LG 27EA33 [Monitor] (27.2"vis) HDMI
    Screen Resolution
    1920x1080
    Hard Drives
    Samsung SSD 850 EVO 250GB (system drive)
    WD 6TB Red NAS hard drives x 2 in Storage Spaces (redundancy)
    PSU
    Corsair 750ax fully modular power supply with sleeved cables
    Case
    Corsair Air 540 with 7 x 140mm fans on front, rear and top panels
    Cooling
    Corsair H110i GT liquid cooled CPU with 4 x 140" Corsair SP "push-pull" and 3 x 140mm fans
    Keyboard
    Thermaltake Poseidon Z illuminated keyboard
    Mouse
    Corsair M65 wired
    Internet Speed
    85MBps DSL
    Browser
    Chrome and Edge
    Antivirus
    Windows Defender, MalwareBytes Pro and CCleaner Pro
    Other Info
    Client of Windows Server 2012 R2 10 PC's, laptops and smartphones on the WLAN.

    1GBps Ethernet ports
Cool that a google engineer disclosed the bug. I think security patching is something all the companies should work together with all the exploiting happening around the world today.
 

My Computer

System One

  • OS
    Windows 8.1 Pro 64 Bit
    Computer type
    Laptop
    System Manufacturer/Model
    Sager NP2740
    CPU
    Intel Core i7 4702HQ 2.2 GHz
    Motherboard
    W740SU
    Memory
    8 GB 1600 MHz
    Graphics Card(s)
    Intel Iris Pro 5200
    Sound Card
    High Defenition Audio
    Monitor(s) Displays
    IPS Display
    Screen Resolution
    1920x1080
    Hard Drives
    Samsung SSD 840 EVO 250 GB mSATA
    Internet Speed
    60 Mbps cable, NETGEAR Night Hawk AC1900
    Browser
    Firefox 38.0.5
    Antivirus
    Windows Defender & Malwarebytes Pro
Back
Top