Buffer overflow in Microsoft Exchange_server
CVE-2017-11937
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Server 2016, Windows Server, version 1709…
Vulnerability class: Buffer Overflow
EPSS: 0.334 (97.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Microsoft Exchange_server — versions 2013, 2016
- Microsoft Forefront_endpoint_protection_2010
- Microsoft Malware_protection_engine
- Microsoft Windows_10 — versions 1511, 1607, 1703
- Microsoft Windows_7
- Microsoft Windows_8.1
- Microsoft Windows_defender
- Microsoft Windows_rt_8.1
- Microsoft Windows_server_2016 — versions 1709
- Microsoft Corporation Malware Protection Engine — versions Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Server 2016, Windows Server, version 1709, Microsoft Exchange Server 2013 and 2016.
Weakness classification (CWE)
Public proof-of-concept exploits
References
- secure@microsoft.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
- secure@microsoft.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- secure@microsoft.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2017-11937?
- CVE-2017-11937 is a high-severity vulnerability in Microsoft Exchange_server, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 7.8/10. Published 2017-12-07.
- How severe is CVE-2017-11937?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2017-11937 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.