CVE-2008-1437

Published May 13, 2008

Last updated 6 years ago

CVSS info 5.0

Overview

Description: Unspecified vulnerability in Microsoft Malware Protection Engine (mpengine.dll) 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent attackers to cause a denial of service (engine hang and restart) via a crafted file, a different vulnerability than CVE-2008-1438.
Source: secure@microsoft.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:antigen_for_exchange:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABC4C839-B772-44EB-BD55-7477FFD73C69"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:antigen_for_smtp_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F2B3A3CB-9A6C-4FC6-BF90-003D8A9FC3D9"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:diagnostics_and_recovery_toolkit:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "166B173E-90D5-4DBF-AD6F-3C804687CB38"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:forefront_client_security:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "769D4056-0E25-4A0A-B0E7-265AC188053A"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:forefront_security_for_exchange_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B50C829-EFB4-4C5D-B1F2-871F3EE7B5C7"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:forefront_security_for_sharepoint:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACFC59CB-6211-49DD-B833-B00D3CE53A18"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:malware_protection_engine:0.1.13.192:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8CEA6F8E-1A38-47FC-891C-326EAA8A9F6B"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:malware_protection_engine:1.1.3520.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6EFC0F5-EB5E-4D34-9B8B-5C60CCC32D70"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:windows_defender:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A458632B-D1AE-4643-A8F0-4295B506E341"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:windows_live_onecare:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4109D8E8-A385-4098-A983-FCF5F69CCD1F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References