CVE-2008-1438

Currently unrated

Key Information:

Vendor: Microsoft
Status: Forefront Client Security; Windows Defender; Forefront Security For Exchange Server; Antigen For Exchange
Vendor: CVE Published:; 13 May 2008

Summary

Unspecified vulnerability in Microsoft Malware Protection Engine (mpengine.dll) 1.1.3520.0 and 0.1.13.192, as used in multiple Microsoft products, allows context-dependent attackers to cause a denial of service (disk space exhaustion) via a file with "crafted data structures" that trigger the creation of large temporary files, a different vulnerability than CVE-2008-1437.

References

http://secunia.com/advisories/30172

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/29073

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1020016

vdb-entryx_refsource_SECTRACK

EPSS Score

29% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 13, 2008
Vulnerability Reserved
Mar 21, 2008

Collectors

NVD DatabaseMitre Database