Microsoft fixes Security Essentials, Forefront products bug


Microsoft fixes Security Essentials, Forefront products bug Staff

Microsoft has issued an advisory alerting customers of a security update that fixes a vulnerability across all of its antimalware products, including Security Essentials and its Forefront enterprise endpoint suite.

Continue Reading This Article

Enjoy this article as well as all of our content, including E-Guides, news, tips and more.

By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Safe Harbor

The software glitch is located in the software giant's Malware Protection Engine (MPE). It could allow an attacker to gain an elevation of privilege if the software scans a system after the attacker deploys a malicious registry key on a computer. Microsoft rates the vulnerability "important" because the flaw cannot be exploited by anonymous users.

Microsoft said the update is automatically installed with updated malware definitions for affected products. In most cases, the update will be deployed automatically in the next 48 hours with no action required of enterprise administrators, Microsoft said.

"Administrators of enterprise installations should follow their established internal processes to ensure the definition and engine updates are approved in their update management software, and that clients consume the updates accordingly," Microsoft said in its advisory.

Microsoft antimalware software affected by the vulnerability includes Microsoft Windows Live OneCare, Microsoft Security Essentials, Microsoft Windows Defender, Microsoft Forefront Client Security, Microsoft Forefront Endpoint Protection 2010 and the Microsoft Malicious Software Removal Tool (MSRT).

An update fixing the vulnerability in the MSRT will be issued March 8, Microsoft said, noting that updating the tool is a lower priority since an attacker cannot exploit the vulnerability by running MSRT manually.

~Robert Westervelt