製品・ソフトウェアに関する情報

JVN脆弱性詳細

Microsoft Malware Protection Engine における権限昇格の脆弱性

Title	Microsoft Malware Protection Engine における権限昇格の脆弱性
Summary	Microsoft Malware Protection Engine には、権限を取得される脆弱性が存在します。
Possible impacts	ローカルユーザにより、巧妙に細工されたユーザのレジストリキー値を介して、サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Feb. 23, 2011, midnight
Registration Date	March 24, 2011, 3:40 p.m.
Last Update	March 24, 2011, 3:40 p.m.

Affected System

マイクロソフト

Microsoft Forefront Client Security

Microsoft Forefront Endpoint Protection 2010

Microsoft Malware Protection Engine

Microsoft Security Essentials

Microsoft Windows Defender

Microsoft Windows Live OneCare

Microsoft 悪意のあるソフトウェアの削除ツール

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2011-0037	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0037
National Vulnerability Database (NVD)
2	CVE-2011-0037	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0037

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-20	https://jvndb.jvn.jp/ja/cwe/CWE-20.html

ベンダー情報

No	Name	URL
Microsoft Security Advisory
1	2491888	http://www.microsoft.com/technet/security/advisory/2491888.mspx
マイクロソフトセキュリティアドバイザリ
2	2491888	http://www.microsoft.com/japan/technet/security/advisory/2491888.mspx

その他

No	Name	URL
ISS X-Force Database
1	65626	http://xforce.iss.net/xforce/xfdb/65626
Secunia Advisory
2	SA43468	http://secunia.com/advisories/43468
SecurityFocus
3	46540	http://www.securityfocus.com/bid/46540
SecurityTracker
4	1025117	http://securitytracker.com/id?1025117
VUPEN Security
5	VUPEN/ADV-2011-0486	http://www.vupen.com/english/advisories/2011/0486

Change Log

No	Changed Details	Date of change
0	[2011年03月24日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2011-0037

Summary	Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain privileges via a crafted value of an unspecified user registry key.
Publication Date	Feb. 26, 2011, 3 a.m.
Registration Date	Jan. 28, 2021, 4:37 p.m.
Last Update	Nov. 21, 2024, 10:23 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:microsoft:forefront_client_security::::::::
cpe:2.3:a:microsoft:windows_defender::::::::
cpe:2.3:a:microsoft:malware_protection_engine::::::::		1.1.6502.0
cpe:2.3:a:microsoft:forefront_endpoint_protection_2010:-:::::::*
cpe:2.3:a:microsoft:malware_protection_engine:0.1.13.192:::::::*
cpe:2.3:a:microsoft:windows_live_onecare::::::::
cpe:2.3:a:microsoft:malicious_software_removal_tool::::::::
cpe:2.3:a:microsoft:malware_protection_engine:1.1.3520.0:::::::*
cpe:2.3:a:microsoft:security_essentials::::::::

Related information, measures and tools

No	URL	タグ
1	http://secunia.com/advisories/43468	Vendor Advisory
2	http://securitytracker.com/id?1025117
3	http://www.microsoft.com/technet/security/advisory/2491888.mspx	Vendor Advisory
4	http://www.securityfocus.com/bid/46540
5	http://www.vupen.com/english/advisories/2011/0486	Vendor Advisory
6	https://exchange.xforce.ibmcloud.com/vulnerabilities/65626
7	http://secunia.com/advisories/43468	Vendor Advisory
8	https://exchange.xforce.ibmcloud.com/vulnerabilities/65626
9	http://www.vupen.com/english/advisories/2011/0486	Vendor Advisory
10	http://www.securityfocus.com/bid/46540
11	http://www.microsoft.com/technet/security/advisory/2491888.mspx	Vendor Advisory
12	http://securitytracker.com/id?1025117

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-20	不適切な入力確認	https://cwe.mitre.org/data/definitions/20.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:microsoft:forefront_client_security::::::::
cpe:2.3:a:microsoft:windows_defender::::::::
cpe:2.3:a:microsoft:malware_protection_engine::::::::		1.1.6502.0
cpe:2.3:a:microsoft:forefront_endpoint_protection_2010:-:::::::*
cpe:2.3:a:microsoft:malware_protection_engine:0.1.13.192:::::::*
cpe:2.3:a:microsoft:windows_live_onecare::::::::
cpe:2.3:a:microsoft:malicious_software_removal_tool::::::::
cpe:2.3:a:microsoft:malware_protection_engine:1.1.3520.0:::::::*
cpe:2.3:a:microsoft:security_essentials::::::::