Microsoft Antivirus and Numerous Apps Impacted by Vulnerability

June 17, 2014 | By Kevin Judge

Microsoft revealed this week that a vulnerability in its Malware Protection Engine could allow an attacker to cause a denial of service. This software is an integral part of its free security software for Windows and is integrated into a variety of other software products.

According to Microsoft Security Advisory 2974294 , an update is available for the following affected software:

  • Microsoft Forefront Client Security
  • Microsoft Forefront Endpoint Protection 2010
  • Microsoft Forefront Security for SharePoint Service Pack 3
  • Microsoft System Center 2012 Endpoint Protection
  • Microsoft System Center 2012 Endpoint Protection Service Pack 1
  • Microsoft Malicious Software Removal Tool (Applies only to May 2014 or earlier versions)
  • Microsoft Security Essentials
  • Microsoft Security Essentials Prerelease
  • Windows Defender for Windows 8, Windows 8.1, Windows Server 2012, and Windows Server 2012 R2
  • Windows Defender for Windows RT and Windows RT 8.1
  • Windows Defender for Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2
  • Windows Defender Offline
  • Windows Intune Endpoint Protection

The advisory explicitly states that the following software are not impacted:

  • Microsoft Antigen for Exchange
  • Microsoft Antigen for SMTP Gateway
  • Forefront Security for Exchange Server
  • Forefront Protection 2010 for Exchange Server
  • Forefront Threat Management Gateway 2010
  • Microsoft Forefront Security for SharePoint
  • Forefront Security for Office Communications Server
  • Microsoft Standalone System Sweeper (part of Microsoft Diagnostics and Recovery Toolset)

 

Be Sociable, Share!

    Add new comment

    Your name
    Comment

    You may use these HTML tags and attributes: <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>