MS KB2491888: Microsoft Malware Protection Engine (MMPE) Privilege Escalation
High Nessus Plugin ID 52456
SynopsisThe remote host has an application that is affected by a local privilege escalation vulnerability.
DescriptionA vulnerable version of Microsoft Malware Protection Engine (MMPE) is installed on the remote system. MMPE is typically included with Microsoft anti-malware products such as Windows Live OneCare, Microsoft Security Essentials, Microsoft Forefront Client Security, Microsoft Forefront Client Security, Microsoft Forefront Endpoint Protection 2010, and Microsoft Malicious Software Removal Tool.
A local user may be able to gain local system privileges by creating a specially crafted registry key before a system is scanned using Microsoft Malware Protection Engine.
SolutionUpdate the malware definitions for the installed Microsoft anti- malware product.