CWE
787
Advisory Published
Updated

CVE-2018-0986

First published: Wed Apr 04 2018(Updated: )

A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune Endpoint Protection, Microsoft Security Essentials, Microsoft System Center Endpoint Protection, Microsoft Exchange Server, Microsoft System Center, Microsoft Forefront Endpoint Protection.

Credit: secure@microsoft.com

Affected SoftwareAffected VersionHow to fix
Microsoft Exchange Server=2013
Microsoft Exchange Server=2016
Microsoft Security Essentials
Microsoft Forefront Endpoint Protection 2010
Microsoft Intune Endpoint Protection
Microsoft System Center Endpoint Protection
Microsoft System Center Endpoint Protection=2012
Microsoft System Center Endpoint Protection=2012-r2
Microsoft Windows Defender
Microsoft Windows 10
Microsoft Windows 10=1511
Microsoft Windows 10=1607
Microsoft Windows 10=1703
Microsoft Windows 10=1709
Microsoft Windows 7=sp1
Microsoft Windows 8.1
Microsoft Windows RT 8.1
Microsoft Windows Server 2008=r2-sp1
Microsoft Windows Server 2012
Microsoft Windows Server 2012=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2016=1709

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is CVE-2018-0986?

    CVE-2018-0986 is a remote code execution vulnerability in the Microsoft Malware Protection Engine.

  • Which software is affected by CVE-2018-0986?

    Windows Defender, Microsoft Security Essentials, Microsoft Forefront Endpoint Protection 2010, Microsoft Intune Endpoint Protection, Microsoft System Center Endpoint Protection, Microsoft Exchange Server 2013 and 2016.

  • What is the severity level of CVE-2018-0986?

    CVE-2018-0986 has a severity level of critical (8.8).

  • How does CVE-2018-0986 work?

    CVE-2018-0986 allows remote attackers to execute arbitrary code by exploiting a memory corruption issue in the Microsoft Malware Protection Engine.

  • Are Windows 10 and Windows 7 vulnerable to CVE-2018-0986?

    No, Windows 10 and Windows 7 are not vulnerable to CVE-2018-0986.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203