Woody Leonhard's no-bull news, tips and help for Windows, Office and more… Please disable your ad blocker – our (polite!) ads help keep AskWoody going!
Home icon Home icon Home icon Email icon RSS icon
  • Microsoft’s Malware Protection Engine Vulnerable

    Posted on December 7th, 2017 at 02:23 Kirsty Comment on the AskWoody Lounge

    Gunter Born has posted a new topic here on a vulnerability in Defender & Security Essentials:

    I received this night (Germany) a notification from Microsoft about a critical vulnerability in Microsoft’s Malware Protection Engine (CVE-2017-11937). All Windows versions using either Defender or Microsoft Security Essentials or Forefront are affected. But there are no updates available – and the link within Microsoft’s Update Catalog are broken.

    He is calling for information and insights. Can you help?

    Check it out here:
    Critical vulnerability in Microsoft’s Malware Protection Engine (CVE-2017-11937)

    UPDATE:

    Defender and MSE are updating itself – and it seems that yesterday the Security module has been updated.

  • Intel Firmware Security Bulletin issued

    Posted on November 21st, 2017 at 01:46 Kirsty Comment on the AskWoody Lounge

    Six months on from the initial vulnerability disclosure on Intel Management Engine, Intel have issued a follow-up disclosure today, on a firmware vulnerability.

    Intel has identified several security vulnerabilities that could potentially place impacted platforms at risk. Systems using ME Firmware versions 11.0/11.5/11.6/11.7/11.10/11.20, SPS Firmware version 4.0, and TXE version 3.0 are impacted

    The details have been posted in the Code Red forum, but as we are missing the right panel widgets, you might not find that by navigating! Here’s the link