cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

7 Replies

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

Also interested in this. we have customers asking.. Would be good to see a hips signature or at least kb article with mitigation suggestions for McAfee products. cheers.

Highlighted
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 3 of 8

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

Hi all

Thanks for posting on the Community.

I would like to request you to please refer the below KB Articles:

https://kc.mcafee.com/agent/index?page=content&id=KB55447

https://kc.mcafee.com/agent/index?page=content&id=KB92585

 

Coverage with HIPS and ENS is still currently under investigation with our Exploit Prevention Team. I would encourage you to raise a Service Request so we can keep you updated with the status of the investigation.

Was my reply helpful?
If this information was helpful in any way, or answered your question, will you please select "Accept as Solution" in my reply, or give kudos as appropriate, so together we can help other members?
Highlighted

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

Thank you for the information on user-defined UDS. However I need to know if ENS has any mitigation. I submitted a service request and they advised it is currently being analyzed with the McAfee Labs team. I can update this post when I get additional info. Thanks!
Highlighted

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

are there any news for ens? could not find anything

Highlighted

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

What I learned from support is that McAfee Labs has created an ENS Expert Rule and will provide on a case by case basis. There is not a KB in the works for this expert rule. This generic rule detects and blocks the Type 1 Font Parsing Remote Code Execution Vulnerability   *Disclaimer* This rule might be false prone based on the customer environment and with usage of Third Party applications using OpenType font. Rule { Process { Include OBJECT_NAME { -v "**" } } Target { Match SECTION { Include OBJECT_NAME { -v "%windir%\\System32\\atmfd.dll" } Include OBJECT_NAME { -v "%windir%\\syswow64\\atmfd.dll" } } } }   For NSP, see KB92585. This outlines the UDS-HTTP: Adobe Type Manager Font Driver Out-of-Bounds Write Vulnerability
Highlighted
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 7 of 8

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

Hello all.

Please refer to my post under:

https://community.mcafee.com/t5/Endpoint-Security-ENS/new-Windows-exploit-zero-day-in-the-Adobe-Type...

I hope this helps.


Was my reply helpful?

If this information was helpful in any way or answered your question, will you please select Accept as Solution in my reply and together we can help other members?
Highlighted

Re: Has McAfee ENS provided any mitigation for Microsoft Security Advisory ADV200006?

already opened a case and we received extradat and expert rule

thks, everything is fine

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community