Microsoft Antimalware Client Privilege Escalation Vulnerability

Microsoft Antimalware Client Privilege Escalation Vulnerability

CVE-2013-0078 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The Microsoft Antimalware Client in Windows Defender on Windows 8 and Windows RT uses an incorrect pathname for MsMpEng.exe, which allows local users to gain privileges via a crafted application, aka "Microsoft Antimalware Improper Pathname Vulnerability."

Learn more about our User Device Pen Test.