Thursday, 03.28.2024, 7:23 PM

Ethical Hacking - By Chintan Gurjar

Site menu
Calendar
«  February 2011  »
SuMoTuWeThFrSa
  12345
6789101112
13141516171819
20212223242526
2728
Our poll
Rate my site
Total of answers: 171

Main » 2011 » February » 25 » Microsoft's virus scanner causes security problem
9:06 PM
Microsoft's virus scanner causes security problem


When performing a virus scan, Microsoft's Malware Protection Engine fails to process a specially crafted registry value correctly, enabling local attackers with restricted privileges to execute arbitrary code at system privilege level (privilege escalation). According to Microsoft's advisory, the vulnerable anti-malware engine (mpengine.dll) is part of the Security Essentials (MSE), Windows Live OneCare, Windows Defender, Forefront Client Security and Forefront Endpoint Protection 2010 products as well as the Malicious Software Removal Tool. All versions up to 1.1.6502.0 are reportedly vulnerable.

A patch that is being deployed automatically via the virus and signature update mechanism will fix the issue. Microsoft says that such updates are usually installed within 48 hours, but that users can also initiate the process manually. An updated version of the Malicious Software Removal Tool will become available on 8 March. The tool is only vulnerable when it is first executed by the system after having been downloaded via Windows Update. Attackers can't exploit the hole by manually starting the tool.

Source :- www.cnet.com
Views: 1353 | Added by: handsome_devil | Rating: 5.0/1
Total comments: 0
Name *:
Email *:
Code *: