2974294 – Vulnerability in Microsoft Malware Protection Engine Could Allow Denial of Service – Version: 1.0

Home > All Posts > 2974294 – Vulnerability in Microsoft Malware Protection Engine Could Allow Denial of Service – Version: 1.0

Revision Note: V1.0 (June 17, 2014): Advisory published
Summary: Microsoft is releasing this security advisory to inform customers that an update to the Microsoft Malware Protection Engine addresses a security vulnerability that was reported to Microsoft. The vulnerability could allow denial of service if the Microsoft Malware Protection Engine scans a specially crafted file. An attacker who successfully exploited this vulnerability could prevent the Microsoft Malware Protection Engine from monitoring affected systems until the specially crafted file is manually removed and the service is restarted.