Microsoft Security Update – Out-of-Band
Date: 4 April 2018
The purpose of this advisory is to bring attention to a recently released Microsoft Security Update which addresses failure to properly scan a specially crafted file, leading to memory corruption and remote code execution in the Microsoft Malware Protection Engine.
This advisory addresses the vulnerability by correcting how the Microsoft Malware Protection Engine scans specially crafted files.
- Microsoft Exchange Server 2013 and 2016
- Microsoft Forefront Endpoint Protection 2010
- Microsoft Security Essentials
- Windows Defender
- Windows Intune Endpoint Protection
CVE References: CVE-2018-0986
No action is required as the Microsoft Malware Protection Engine as a built-in and automatic updates feature. Update should be applied within forty-eight (48) hours of release by vendor.
Note to Readers
In support of Public Safety's mission to build a safe and resilient Canada, CCIRC's mandate is to help ensure the security and resilience of the vital non-federal government cyber systems that underpin Canada's national security, public safety and economic prosperity. As Canada's computer security incident response team, CCIRC is Canada's national coordination centre for the prevention and mitigation of, preparedness for, response to, and recovery from cyber incidents on non-federal government systems. It does this by providing authoritative advice and support, and coordinating information sharing and incident response.
Please note, CCIRC PGP key has recently been updated.
For general information, please contact Public Safety Canada's Public Affairs division at:
Telephone: 613-944-4875 or 1-800-830-3118
- Date modified: