CVE-2008-1437

medium Microsoft
CVSS v3 Base Score
5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS Score
50.3%
Exploitation probability in 30 days
Top 2% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
None
Integrity
None
Availability
P
Published: May 13, 2008 (6574 days ago)
Last Modified: April 23, 2026
Vendor: Microsoft
Source: NVD

Description

Unspecified vulnerability in Microsoft Malware Protection Engine (mpengine.dll) 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent attackers to cause a denial of service (engine hang and restart) via a crafted file, a different vulnerability than CVE-2008-1438.

CWE

CWE-399

Affected Products

microsoft antigen for exchangemicrosoft antigen for smtp gatewaymicrosoft diagnostics and recovery toolkitmicrosoft forefront client securitymicrosoft forefront security for exchange servermicrosoft forefront security for sharepointmicrosoft malware protection enginemicrosoft windows defendermicrosoft windows live onecare

References

🔗 marc.info 🔗 secunia.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.us-cert.gov