CVE-2013-1346

CRITICAL

9.3

CVSS Severity Score

EPSS Score0.1480%

EPSS Percentile13.36th

PublishedMay 15, 2013

Last ModifiedApr 29, 2026

Vulnerability Description

mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 on x64 platforms allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.

Affected Platforms (CPE)

📦

Microsoft

Malware Protection Engine

<= 1.1.9402.0

References & Advisories

🔗 http://technet.microsoft.com/security/advisory/2846338

Related Vulnerabilities

CVE-2006-52709.3

Integer overflow in the Microsoft Malware Protection Engine (mpengine.dll), as used by Windows Live OneCare, Antigen, Defender, an...

CVE-2018-09868.8

A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially craft...

CVE-2017-122448.6

A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated...

CVE-2016-63688.6

A vulnerability in the detection engine parsing of Pragmatic General Multicast (PGM) protocol packets for Cisco Firepower System S...