Skip Ribbon Commands
Skip to main content
Computer Emergency Response Team of Mauritius (CERT-MU)

VN-2017-67


Microsoft Windows Defender File Processing Flaw in Malware Protection Engine Lets Remote Users Execute Arbitrary Code
Severity Rating: Medium
Systems Affected:
  • Microsoft Windows Defender
Description
A vulnerability was reported in Microsoft Windows Defender, which can allow a remote user to cause execution of arbitrary code on the target system. The vulnerability exists because the malware protection Engine does not properly scan files. This vulnerability can allow a remote user to create a specially crafted file that, when scanned by the target Malware Protection Engine, will execute arbitrary code on the target system. The code will run with LocalSystem privileges.
 
Solution
Users are advised to apply updates.
More information is available on:
 
Vendor Information
Microsoft
 
References
SecurityTracker
 
Microsoft Security Bulletin
 
Contact Information
 
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis