CVE-2017-8537

Current Description

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to denial of service. aka "Microsoft Malware Protection Engine Denial of Service Vulnerability", a different vulnerability than CVE-2017-8535, CVE-2017-8536, CVE-2017-8539, and CVE-2017-8542.

Referenced by CVEs:CVE-2017-8535, CVE-2017-8536, CVE-2017-8539, CVE-2017-8542

Basic Data

PublishedMay 26, 2017
Last ModifiedApril 09, 2020
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-119
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score4.3
SeverityMEDIUM
Exploitability Score8.6
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • AND
    • OR - Configuration 1
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationMicrosoftWindows Defender-*******
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3OSMicrosoftWindows 10-*******
      2.3OSMicrosoftWindows 101511*******
      2.3OSMicrosoftWindows 101607*******
      2.3OSMicrosoftWindows 101703*******
      2.3OSMicrosoftWindows 7-sp1******
      2.3OSMicrosoftWindows 8.1-*******
      2.3OSMicrosoftWindows Rt 8.1-*******
      2.3OSMicrosoftWindows Server 2008-sp2******
      2.3OSMicrosoftWindows Server 2008r2sp1****itanium*
      2.3OSMicrosoftWindows Server 2008r2sp1****x64*
      2.3OSMicrosoftWindows Server 2016-*******
  • OR - Configuration 2
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationMicrosoftEndpoint Protection-*******
    2.3ApplicationMicrosoftExchange Server2013-******
    2.3ApplicationMicrosoftExchange Server2016-******
    2.3ApplicationMicrosoftForefront Endpoint Protection-*******
    2.3ApplicationMicrosoftForefront Endpoint Protection2010*******
    2.3ApplicationMicrosoftSecurity Essentials-*******
    2.3ApplicationMicrosoftSystem Center Endpoint Protection-*******
    2.3ApplicationMicrosoftWindows Intune Endpoint Protection********

Vulnerable Software List

VendorProductVersions
Microsoft Exchange Server 2013, 2016
Microsoft Forefront Endpoint Protection -, 2010
Microsoft System Center Endpoint Protection -
Microsoft Windows Intune Endpoint Protection *
Microsoft Security Essentials -
Microsoft Endpoint Protection -
Microsoft Windows Defender -

References

NameSourceURLTags
98705http://www.securityfocus.com/bid/98705BIDThird Party Advisory VDB Entry
1038571http://www.securitytracker.com/id/1038571SECTRACKThird Party Advisory VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8537https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8537CONFIRMPATCH Vendor Advisory
42081https://www.exploit-db.com/exploits/42081/EXPLOIT-DBThird Party Advisory VDB Entry