Security News > 2017 > May > Microsoft Issues Patches for Another Four Zero-Day Vulnerabilities (The Hackers News)

Microsoft Issues Patches for Another Four Zero-Day Vulnerabilities (The Hackers News)
2017-05-10 03:37

As part of this month's Patch Tuesday, Microsoft has released security patches for a total of 55 vulnerabilities across its products, including fixes for four zero-day vulnerabilities being exploited in the wild. Just yesterday, Microsoft released an emergency out-of-band update separately to patch a remote execution bug (CVE-2017-0290) in Microsoft's Antivirus Engine that comes enabled by


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/j5869GHy9GE/patch-windows-zero-days.html

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2017-05-09 CVE-2017-0290 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft products
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 does not properly scan a specially crafted file leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability."
local
low complexity
microsoft CWE-119
7.8
7.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 382 52 1423 2927 176 4578