Vulnerability CVE-2017-0290 - Russian Vulnerability Scanner Database

Scores

EPSS

0.905High90.5%

0%20%40%60%80%100%

Percentile: 90.5%

CVSS

7.8High3.x

0246810

CVSS Score: 7.8/10

All CVSS Scores

CVSS 3.x

7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS 2.0

9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Description

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 does not properly scan a specially crafted file leading to memory corruption, aka “Microsoft Malware Protection Engine Remote Code Execution Vulnerability.”

Sources

nvd

CWEs

CWE-119

Related Vulnerabilities

BDU:2024-07079

Exploits

Exploit ID: 41975

Source: exploitdb

URL: https://www.exploit-db.com/exploits/41975

Exploit ID: CVE-2017-0290

Source: github-poc

URL: https://github.com/homjxi0e/CVE-2017-0290-

Vulnerable Software (3)

Type: Configuration

Vendor: microsoft

Product: forefront_security

Operating System: * * *

Trait:

{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:a:microsoft:forefront_security:-:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe2...

{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:a:microsoft:forefront_security:-:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:a:microsoft:malware_protection_engine:*:*:*:*:*:*:*:*",
          "versionEndIncluding": "1.1.13701.0",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:a:microsoft:windows_defender:-:*:*:*:*:*:*:*",
          "vulnerable": true
        }
      ],
      "operator": "OR"
    },
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*"
        }
      ],
      "operator": "OR"
    }
  ],
  "operator": "AND"
}

Source: nvd

Type: Configuration

Vendor: microsoft

Product: malware_protection_engine

Operating System: * * *

Trait:

{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:a:microsoft:forefront_security:-:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe2...

{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:a:microsoft:forefront_security:-:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:a:microsoft:malware_protection_engine:*:*:*:*:*:*:*:*",
          "versionEndIncluding": "1.1.13701.0",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:a:microsoft:windows_defender:-:*:*:*:*:*:*:*",
          "vulnerable": true
        }
      ],
      "operator": "OR"
    },
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*"
        }
      ],
      "operator": "OR"
    }
  ],
  "operator": "AND"
}

Source: nvd

Type: Configuration

Vendor: microsoft

Product: windows_defender

Operating System: * * *

Trait:

{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:a:microsoft:forefront_security:-:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe2...

{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:a:microsoft:forefront_security:-:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:a:microsoft:malware_protection_engine:*:*:*:*:*:*:*:*",
          "versionEndIncluding": "1.1.13701.0",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:a:microsoft:windows_defender:-:*:*:*:*:*:*:*",
          "vulnerable": true
        }
      ],
      "operator": "OR"
    },
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*"
        },
        {
          "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*"
        }
      ],
      "operator": "OR"
    }
  ],
  "operator": "AND"
}

Source: nvd

Russian Vulnerability Scanner Database

CVE-2017-0290

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

CWEs

Related Vulnerabilities

Exploits

Vulnerable Software (3)