{ "schema_version": "1.4.0", "id": "GHSA-w3hq-vf6w-p52j", "modified": "2025-04-20T03:37:21Z", "published": "2022-05-14T01:05:25Z", "aliases": [ "CVE-2017-0290" ], "details": "The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 does not properly scan a specially crafted file leading to memory corruption, aka \"Microsoft Malware Protection Engine Remote Code Execution Vulnerability.\"", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-0290" }, { "type": "WEB", "url": "https://0patch.blogspot.si/2017/05/0patching-worst-windows-remote-code.html" }, { "type": "WEB", "url": "https://arstechnica.com/information-technology/2017/05/windows-defender-nscript-remote-vulnerability" }, { "type": "WEB", "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1252" }, { "type": "WEB", "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0290" }, { "type": "WEB", "url": "https://technet.microsoft.com/library/security/4022344" }, { "type": "WEB", "url": "https://twitter.com/natashenka/status/861748397409058816" }, { "type": "WEB", "url": "https://www.exploit-db.com/exploits/41975" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/98330" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1038419" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1038420" } ], "database_specific": { "cwe_ids": [ "CWE-119" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2017-05-09T06:29:00Z" } }