Описание
Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain privileges via a crafted value of an unspecified user registry key.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.6502.0 (включая)
Одно из
cpe:2.3:a:microsoft:forefront_client_security:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:forefront_endpoint_protection_2010:-:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:malicious_software_removal_tool:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:malware_protection_engine:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:malware_protection_engine:0.1.13.192:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:malware_protection_engine:1.1.3520.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:security_essentials:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_defender:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_live_onecare:*:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00358
Низкий
7.2 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain privileges via a crafted value of an unspecified user registry key.
EPSS
Процентиль: 58%
0.00358
Низкий
7.2 High
CVSS2
Дефекты
CWE-20