Microsoft Forefront Client Security Free Download君,已阅读到文档的结尾了呢~~
国际字符集在 FOREFRONT SECURITY FOR EXCHANGE SERVER 中,对按名称筛选文件的支持不仅限于英文字符集。例如,如果邮件中具有包含日文字符、词语或短语的附件,则邮件的...
扫扫二维码,随身浏览文档
手机或平板扫扫即可继续访问
MICROSOFT FOREFRONT SECURITY FOR EXCHANGE SERVER 用户指南
举报该文档为侵权文档。
举报该文档含有违规或不良信息。
反馈该文档无法正常浏览。
举报该文档为重复文档。
推荐理由:
将文档分享至:
分享完整地址
文档地址:
粘贴到BBS或博客
flash地址:
支持嵌入FLASH地址的网站使用
html代码:
&embed src='/DocinViewer--144.swf' width='100%' height='600' type=application/x-shockwave-flash ALLOWFULLSCREEN='true' ALLOWSCRIPTACCESS='always'&&/embed&
450px*300px480px*400px650px*490px
支持嵌入HTML代码的网站使用
您的内容已经提交成功
您所提交的内容需要审核后才能发布,请您等待!
3秒自动关闭窗口网络与安全:
您现在的位置:
Microsoft Forefront 安全产品线帮助您有效地阻止安全威胁,确保您的业务免受来自垃圾邮件、病毒以及非法入侵的伤害。Microsoft Forefront 安全产品线独有的多层次集成防护技术,帮助您全面保护您的客户端、应用服务器和网络边缘。
客户面临的应用程序层面的攻击越来越多、越来越复杂。
Microsoft Forefront 提供一个全面的产品线,可以保护信息,并控制对操作系统、应用程序和服务器的访问,从而帮助企业防范不断变化的威胁。
相互独立、各自为政的安全(点)产品越来越多。
Microsoft Forefront 集成了整个产品线的安全功能,并与 Microsoft 服务器应用程序及现有 IT 基础架构集成,因此您可以提高网络效率,更好地对其进行安全控制。
客户发现很难有效地部署和管理安全产品。
Microsoft Forefront 可以让您通过简化安全产品的管理、部署和使用,更好地保护您的企业,从而让您对企业受到的良好保护更加放心。
如今安全产品市场状况很复杂,产品之间缺乏协作能力,缺乏统一的事件报告与分析管理工具,这种状况对管理员来说是一个挑战,微软Forefront由此而生。
帮助用户更好的了解Forefront强大的功能,以及Forefront在整个微软产品家族中的地位,用微软的理解去阐述微软的产品。
Microsoft Forefront Security for Exchange Server与Forefront Security for SharePoint能够全面防护病毒和其它类型的恶意软件,管理员可通过最佳业务实践来部署和配置。
软件试用下载
Microsoft Forefront安全产品线将全面保护用户的客户端、服务器和网络边缘免受恶意侵害,下载Forefront试用版,体验全新的安全防护。
专家专栏
微软在Forefront品牌之下推出了一整套企业安全解决方案,微软安全解决方案部门副总裁Ted Kummert将为用户解疑。
微软Forefront Client Security适用于企业环境的一套易于管理和控制,同时提供统一恶意软件防护的解决方案。
Microsoft Forefront讨论区
策划制作
责任编辑:张帅电话:86-10-E-mail: #改为@
All Rights Reserved, Copyright , .cn
404 Not Found
The requested URL /TLimages/include/code-nnr.html was not found on this server.
Apache/2.0.58 (Unix) mod_jk/1.2.15 Server atFrom Wikipedia, the free encyclopedia
This article relies too much on
to . Please improve this by adding . (September 2011) ()
Microsoft Forefront logo
Microsoft Forefront is a discontinued family of
security software by . Microsoft Forefront products are designed to help protect ,
and ) and . As of 2015, the only actively developed Forefront product is .
Forefront includes the following products:
: State-based identity management software product, designed to manage users' digital identities, credentials and groupings throughout the lifecycle of their membership of an enterprise computer system
System Center : A business
product that can be controlled over the network, formerly known as Forefront Endpoint Protection, Forefront Client Security and Client Protection.
version of Forefront Protect for Exchange Server: Instead of installing a security program on the server, the customer re-routes its email traffic to the Microsoft online service before receiving them.
: Discontinued server product that provides three functions: ,
and . Formerly called Internet Security and Acceleration Server or ISA Server.
: Discontinued server product that protects network assets by
all inbound access request from authorized users. Supports
(VPN) and . Formerly called Intelligent Application Gateway.
Server Management Console: Discontinued web-based application that enables management of multiple instances of Protection for Exchange, Protection for SharePoint and Microsoft Antigen from a single interface.
Protection for Exchange: A discontinued software product that detects viruses, spyware, and spam by integrating multiple scanning engines from security partners in a single solution to protect
messaging environments. FPE provides an administration console that includes customizable configuration settings, filtering options, monitoring features and reports, and integration with the
(FOPE) product. After installation, managing FPE on multiple Exchange servers can be done with the Protection Server Management Console. Additionally, FPE can be managed using Windows PowerShell, a command-line shell and task-based scripting technology that enables the automation of system administration tasks.
Protection for SharePoint: A discontinued product that protects
document libraries. It enforces rules that prevent documents containing malware, sensitive information, or out-of-policy content from being uploaded. Protection Server Management Console or
can be used to manage Protection for SharePoint Server on multiple servers.
Security for Office Communications Server: Protects computers running
from malware. Formerly called Antigen for Instant Messaging.
The predecessor to the Forefront server protection products was the Antigen line of antivirus products created by Sybari Software. Sybari was acquired by Microsoft in 2005, and the first Microsoft-branded version of the product was called Microsoft Forefront Security for SharePoint (FSSP) Version 10. FSSP Version 10 supports Microsoft Office SharePoint Server 2007 or Microsoft Windows SharePoint Services version 3, whereas FPSP (the last version of the product) supports Microsoft Office SharePoint Server 2010, Microsoft SharePoint Foundation 2010, Microsoft Office SharePoint Server 2007 SP1, or Windows SharePoint Services version 3 SP1.
. Microsoft 2009.
. Microsoft 2009.
. . Microsoft Corporation. 12 September .
. Server & Cloud Blog. . 17 December 2013.
. . Microsoft. 10 November .
Hicks, Richard (12 September 2012).
security products
: Hidden categories:当前位置: >
MS Security Advisory 4022344: RCE in Windows Defender
栏目分类:
发布日期:
浏览次数:次
导读:本文为去找网小编(www.7zhao.net)为您推荐的MS Security Advisory 4022344: RCE in Windows Defender,希望对您有所帮助,谢谢! Security Update for Microsoft Malware Protection Engine Published: May 8, 2017 Version: 1.0 O
本文为去找网小编(www.7zhao.net)为您推荐的MS Security Advisory 4022344: RCE in Windows Defender,希望对您有所帮助,谢谢! 欢迎访问www.7zhao.net
Security Update for Microsoft Malware Protection Engine
Published: May 8, 2017 www.7zhao.net
Version: 1.0
On this page
欢迎访问www.7zhao.net
Microsoft is releasing this security advisory to inform customers that an update to the Microsoft Malware Protection Engine addresses a security vulnerability that was reported to Microsoft. 去找(www.7zhao.net欢迎您
The update addresses a vulnerability that could allow remote code execution if the Microsoft Malware Protection Engine scans a specially crafted file. An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system. 本文来自去找www.7zhao.net
The Microsoft Malware Protection Engine ships with several Microsoft antimalware products. See the
Affected Software
section for a list of affected products. Updates to the Microsoft Malware Protection Engine are installed along with the updated malware definitions for the affected products. Administrators of enterprise installations should follow their established internal processes to ensure that the definition and engine updates are approved in their update management software, and that clients consume the updates accordingly.
去找(www.7zhao.net欢迎您
Typically, no action is required of enterprise administrators or end users to install updates for the Microsoft Malware Protection Engine, because the built-in mechanism for the automatic detection and deployment of updates will apply the update within 48 hours of release. The exact time frame depends on the software used, Internet connection, and infrastructure configuration. 本文来自去找www.7zhao.net
Issue References
For more information about this issue, see the following references: 内容来自www.7zhao.net
References
Identification
Last version of the Microsoft Malware Protection Engine affected by this vulnerability
Version 1.1.13701.0 本文来自去找www.7zhao.net
First version of the Microsoft Malware Protection Engine with this vulnerability addressed
Version 1.1.13704.0 本文来自去找www.7zhao.net
*If your version of the Microsoft Malware Protection Engine is equal to or greater than this version, then you are not affected by this vulnerability and do not need to take any further action. For more information on how to verify the engine version number that your software is currently using, see the section, &Verifying Update Installation&, in
本文来自去找www.7zhao.net
Affected Software
The following software versions or editions are affected. Versions or editions that are not listed are either past their support life cycle or are not affected. To determine the support life cycle for your software version or edition, see
本文来自去找www.7zhao.net
Antimalware Software
内容来自www.7zhao.net
Microsoft Forefront Endpoint Protection 2010 www.7zhao.net
去找(www.7zhao.net欢迎您
Remote Code Execution 去找(www.7zhao.net欢迎您
Microsoft Endpoint Protection 本文来自去找www.7zhao.net
内容来自www.7zhao.net
Remote Code Execution 本文来自去找www.7zhao.net
Microsoft Forefront Security for SharePoint Service Pack 3 欢迎访问www.7zhao.net
去找(www.7zhao.net欢迎您
Remote Code Execution 去找(www.7zhao.net欢迎您
Microsoft System Center Endpoint Protection 内容来自www.7zhao.net
内容来自www.7zhao.net
Remote Code Execution 欢迎访问www.7zhao.net
Microsoft Security Essentials 欢迎访问www.7zhao.net
copyright www.7zhao.net
Remote Code Execution 内容来自www.7zhao.net
Windows Defender for Windows 7 本文来自去找www.7zhao.net
去找(www.7zhao.net欢迎您
Remote Code Execution 内容来自www.7zhao.net
Windows Defender for Windows 8.1 内容来自www.7zhao.net
本文来自去找www.7zhao.net
Remote Code Execution 欢迎访问www.7zhao.net
Windows Defender for Windows RT 8.1 本文来自去找www.7zhao.net
去找(www.7zhao.net欢迎您
Remote Code Execution 欢迎访问www.7zhao.net
Windows Defender for Windows 10, Windows 10 1511, Windows 10 1607, Windows Server 2016, Windows 10 1703 欢迎访问www.7zhao.net
内容来自www.7zhao.net
Remote Code Execution 去找(www.7zhao.net欢迎您
Windows Intune Endpoint Protection copyright www.7zhao.net
本文来自去找www.7zhao.net
Remote Code Execution 欢迎访问www.7zhao.net
Exploitability Index
The following table provides an exploitability assessment of each of the vulnerabilities addressed this month. The vulnerabilities are listed in order of bulletin ID then CVE ID. Only vulnerabilities that have a severity rating of Critical or Important in the bulletins are included. 内容来自www.7zhao.net
How do I use this table?
Use this table to learn about the likelihood of code execution and denial of service exploits within 30 days of security bulletin release, for each of the security updates that you may need to install. Review each of the assessments below, in accordance with your specific configuration, to prioritize your deployment of this month's updates. For more information about what these ratings mean, and how they are determined, please see
去找(www.7zhao.net欢迎您
In the columns below, &Latest Software Release& refers to the subject software, and &Older Software Releases& refers to all older, supported releases of the subject software, as listed in the &Affected Software& and &Non-Affected Software& tables in the bulletin. 去找(www.7zhao.net欢迎您
Vulnerability&Title
Exploitability&Assessment&for
Latest&Software&Release
copyright www.7zhao.net
Exploitability&Assessment&for
Older&Software&Release
copyright www.7zhao.net
Denial&of&Service
Exploitability&Assessment
www.7zhao.net
www.7zhao.net
Scripting Engine Memory Corruption Vulnerability 欢迎访问www.7zhao.net
2 - Exploitation Less Likely www.7zhao.net
2 - Exploitation Less Likely 内容来自www.7zhao.net
Not applicable 内容来自www.7zhao.net
Advisory FAQ
Is Microsoft releasing a Security Bulletin to address this vulnerability?& 本文来自去找www.7zhao.net
No. Microsoft is releasing this informational security advisory to inform customers that an update to the Microsoft Malware Protection Engine addresses a security vulnerability that was reported to Microsoft.
Typically, no action is required of enterprise administrators or end users to install this update. copyright www.7zhao.net
Why is no action required to install this update?& 去找(www.7zhao.net欢迎您
In response to a constantly changing threat landscape, Microsoft frequently updates malware definitions and the Microsoft Malware Protection Engine. In order to be effective in helping protect against new and prevalent threats, antimalware software must be kept up to date with these updates in a timely manner.
For enterprise deployments as well as end users, the default configuration in Microsoft antimalware software helps ensure that malware definitions and the Microsoft Malware Protection Engine are kept up to date automatically. Product documentation also recommends that products are configured for automatic updating. copyright www.7zhao.net
Best practices recommend that customers regularly verify whether software distribution, such as the automatic deployment of Microsoft Malware Protection Engine updates and malware definitions, is working as expected in their environment. 本文来自去找www.7zhao.net
How often are the Microsoft Malware Protection Engine and malware definitions updated?& 本文来自去找www.7zhao.net
Microsoft typically releases an update for the Microsoft Malware Protection Engine once a month or as needed to protect against new threats. Microsoft also typically updates the malware definitions three times daily and can increase the frequency when needed.
Depending on which Microsoft antimalware software is used and how it is configured, the software may search for engine and definition updates every day when connected to the Internet, up to multiple times daily. Customers can also choose to manually check for updates at any time. copyright www.7zhao.net
How can I install the update?& 欢迎访问www.7zhao.net
Refer to the section,
Suggested Actions
, for details on how to install this update.
What is the Microsoft Malware Protection Engine?& 欢迎访问www.7zhao.net
The Microsoft Malware Protection Engine, mpengine.dll, provides the scanning, detection, and cleaning capabilities for Microsoft antivirus and antispyware software.
Does this update contain any additional security-related changes to functionality?
Yes. &In addition to the changes that are listed for this vulnerability, this update includes defense-in-depth updates to help improve security-related features. 去找(www.7zhao.net欢迎您
Where can I find more information about Microsoft antimalware technology?& 本文来自去找www.7zhao.net
For more information, visit the
Microsoft Malware Protection Engine Remote Code Execution Vulnerability - CVE-
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file leading to memory corruption. 本文来自去找www.7zhao.net
An attacker who successfully exploited this vulnerability could execute arbitrary code in the security context of the LocalSystem account and take control of the system. An attacker could t view, change, or create new accounts with full user rights. 本文来自去找www.7zhao.net
To exploit this vulnerability, a specially crafted file must be scanned by an affected version of the Microsoft Malware Protection Engine. There are many ways that an attacker could place a specially crafted file in a location that is scanned by the Microsoft Malware Protection Engine. For example, an attacker could use a website to deliver a specially crafted file to the victim's system that is scanned when the website is viewed by the user. An attacker could also deliver a specially crafted file via an email message or in an Instant Messenger message that is scanned when the file is opened. In addition, an attacker could take advantage of websites that accept or host user-provided content, to upload a specially crafted file to a shared location that is scanned by the Malware Protection Engine running on the hosting server. copyright www.7zhao.net
If the affected antimalware software has real-time protection turned on, the Microsoft Malware Protection Engine will scan files automatically, leading to exploitation of the vulnerability when the specially crafted file scanned. If real-time scanning is not enabled, the attacker would need to wait until a scheduled scan occurs in order for the vulnerability to be exploited. All systems running an affected version of antimalware software are primarily at risk. copyright www.7zhao.net
The update addresses the vulnerability by correcting the manner in which the Microsoft Malware Protection Engine scans specially crafted files. 欢迎访问www.7zhao.net
Microsoft received information about this vulnerability through coordinated vulnerability disclosure. 本文来自去找www.7zhao.net
Microsoft had not received any information to indicate that this vulnerability had been publicly used to attack customers when this security advisory was originally issued. 内容来自www.7zhao.net
Verify that the update is installed
Customers should verify that the latest version of the Microsoft Malware Protection Engine and definition updates are being actively downloaded and installed for their Microsoft antimalware products. www.7zhao.net
For more information on how to verify the version number for the Microsoft Malware Protection Engine that your software is currently using, see the section, &Verifying Update Installation&, in
copyright www.7zhao.net
For affected software, verify that the Microsoft Malware Protection Engine version is 1.1.10701.0 or later. www.7zhao.net
If necessary, install the update
Administrators of enterprise antimalware deployments should ensure that their update management software is configured to automatically approve and distribute engine updates and new malware definitions. Enterprise administrators should also verify that the latest version of the Microsoft Malware Protection Engine and definition updates are being actively downloaded, approved and deployed in their environment. 去找(www.7zhao.net欢迎您
For end-users, the affected software provides built-in mechanisms for the automatic detection and deployment of this update. For these customers, the update will be applied within 48 hours of its availability. The exact time frame depends on the software used, Internet connection, and infrastructure configuration. End users that do not wish to wait can manually update their antimalware software. copyright www.7zhao.net
For more information on how to manually update the Microsoft Malware Protection Engine and malware definitions, refer to
欢迎访问www.7zhao.net
Microsoftthanks the following for working with us to help protect customers:
内容来自www.7zhao.net
Natalie Silvanovich and Tavis Ormandy of
Microsoft Active Protections Program (MAPP)
To improve security protections for customers, Microsoft provides vulnerability information to major security software providers in advance of each monthly security update release. Security software providers can then use this vulnerability information to provide updated protections to customers via their security software or devices, such as antivirus, network-based intrusion detection systems, or host-based intrusion prevention systems. To determine whether active protections are available from security software providers, please visit the active protections websites provided by program partners, listed in
www.7zhao.net
You can provide feedback by completing the Microsoft Help and Support form,
Customers in the United States and Canada can receive technical support fromSecurity Support. For more information, see
International customers can receive support from their local Microsoft subsidiaries. For more information, see
provides additional information about security in Microsoft products.
Disclaimer
The information provided in this advisory is provided &as is& without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply. copyright www.7zhao.net
V1.0 (May 8, 2017): Advisory published.
www.7zhao.net
本文原文地址:
以上为MS Security Advisory 4022344: RCE in Windows Defender文章的全部内容,若您也有好的文章,欢迎与我们分享!
欢迎访问www.7zhao.net
声明:本站发布的资源均来自互联网,仅供交流学习之用,请勿作商业用途,所有资源版权归原作者所有。如果有侵犯到您的权益,请联系本站删除,谢谢合作!
Copyright &去找网版权所有
皖ICP备号-2
