SMTP: Microsoft Malware Protection Engine File Processing Denial of Service
This signature detects attempts to exploit a known vulnerability against Microsoft Malware Protection Engine. A successful attack can result in a denial-of-service condition.
Extended Description
Microsoft Malware Protection Engine is prone to a remote denial-of-service vulnerability because it fails to properly validate user-supplied input when parsing specially crafted files. Attackers can exploit this issue to cause an affected computer to stop responding or to restart. Successful attacks will deny service to legitimate users.
Affected Products
Microsoft standalone_system_sweeper
Short Name
SMTP:DOS:MS-MALWARE-ENGINE
Severity
Major
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
CVE-2008-1437 Denial Engine File Malware Microsoft Processing Protection Service bid:29060 of
Release Date
12/21/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3726
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.0