MS08-029: Vulnerabilities in Microsoft Malware Protection Engine Could Allow Denial of Service (952044)

Medium Nessus Plugin ID 32313


It is possible to crash the antimalware program.


The remote host is running a version of Windows Malware Protection engine that is vulnerable to a bug in the file handling routine which could allow an attacker to crash the protection engine.


Microsoft has released a set of patches for Windows Defender and Live OneCare.

See Also

Plugin Details

Severity: Medium

ID: 32313

File Name: smb_nt_ms08-029.nasl

Version: $Revision: 1.22 $

Type: local

Agent: windows

Published: 2008/05/13

Modified: 2017/08/10

Dependencies: 57033, 13855

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:windows_defender, cpe:/a:microsoft:windows_live_onecare, cpe:/a:microsoft:antigen, cpe:/a:microsoft:forefront_client_security, cpe:/a:microsoft:forefront_security

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2008/05/13

Vulnerability Publication Date: 2008/05/13

Reference Information

CVE: CVE-2008-1437, CVE-2008-1438

BID: 29060, 29073

OSVDB: 45027, 45028

MSFT: MS08-029

MSKB: 952044

CWE: 399