CVE-2017-0290 Report: May 2017 Credit: Tavis Ormandy of Google Project Zero PoC https://bugs.chromium.org/p/project-zero/issues/attachment?aid=283405 Reference MsMpEng: Remotely Exploitable Type Confusion in Windows 8, 8.1, 10, Windows Server, SCEP, Microsoft Security Essentials, and more. Microsoft Security Advisory 4022344 - Security Update for Microsoft Malware Protection Engine 漏洞预警 | Windows系统恶意软件防护引擎曝严重远程代码执行漏洞(CVE-2017-0290)