Vulnerability Description
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune Endpoint Protection, Microsoft Security Essentials, Microsoft System Center Endpoint Protection, Microsoft Exchange Server, Microsoft System Center, Microsoft Forefront Endpoint Protection.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Exchange Server | 2013 |
| Microsoft | Security Essentials | - |
| Microsoft | Forefront Endpoint Protection 2010 | - |
| Microsoft | Intune Endpoint Protection | - |
| Microsoft | System Center Endpoint Protection | All versions |
| Microsoft | Windows Defender | - |
| Microsoft | Windows 10 | - |
| Microsoft | Windows 7 | - |
| Microsoft | Windows 8.1 | All versions |
| Microsoft | Windows Rt 8.1 | All versions |
| Microsoft | Windows Server 2008 | r2 |
| Microsoft | Windows Server 2012 | All versions |
| Microsoft | Windows Server 2016 | All versions |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/103593Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040631Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0986PatchVendor Advisory
- https://www.exploit-db.com/exploits/44402/ExploitThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/103593Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040631Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0986PatchVendor Advisory
- https://www.exploit-db.com/exploits/44402/ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2018-0986?
CVE-2018-0986 is a vulnerability with a CVSS score of 8.8 (HIGH). A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protecti...
How severe is CVE-2018-0986?
CVE-2018-0986 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-0986?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Exchange Server, Microsoft Security Essentials, Microsoft Forefront Endpoint Protection 2010, Microsoft Intune Endpoint Protection, Microsoft System Center Endpoint Protection.