Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 13/05/2008 Updated: 12/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Unspecified vulnerability in Microsoft Malware Protection Engine (mpengine.dll) 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent malicious users to cause a denial of service (disk space exhaustion) via a file with "crafted data structures" that trigger the creation of large temporary files, a different vulnerability than CVE-2008-1437.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft malware protection engine 1.1.3520.0
microsoft windows defender
microsoft diagnostics and recovery toolkit 6.0
microsoft forefront client security
microsoft forefront security for exchange server
microsoft forefront security for sharepoint
microsoft malware protection engine 0.1.13.192
microsoft antigen for exchange
microsoft antigen for smtp gateway
microsoft windows live onecare

CWE-399 http://www.securityfocus.com/bid/29073 http://www.securitytracker.com/id?1020016 http://secunia.com/advisories/30172 http://www.us-cert.gov/cas/techalerts/TA08-134A.html http://www.vupen.com/english/advisories/2008/1506/references http://marc.info/?l=bugtraq&m=121129490723574&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14375 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-029 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-1438

Vulnerability Summary

References

Vulmon Search

About

Products

Connect