RE:: MPCMDRUN.exe (CVE-2020-1163 & CVE-2020-1170) RRS feed

  • Question

  • Wondering if anyone can give me some input we are mitigating the above CVE by pushing out latest definitions and Platform Updates.

    Thing is once they are successfully applied we still have rogue versions of MPCMDRUN in locations for example:-

      Path              : C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\
      Installed version : 4.18.2001.7
      Fixed version     : 4.18.2005.1

    And there is the latest version here with the fixed EXE.

    How can we mitigate these risks if the mitigating fixes are not cleaning them away???

    Thursday, September 10, 2020 9:18 AM