During the technical support (only) phase, commercially reasonable support incidents will be provided through Microsoft Customer Service & Support and Microsoft’s managed support offerings (such as Premier Support).
If a support incident requires escalation to development for further guidance, requires a non-security update, or requires a security update, customers will be asked to upgrade to the latest platform version.
Administrators of enterprise installations should follow their established internal processes to ensure that the definition and engine updates are approved in their update management software, and that clients consume the updates accordingly, the company states in its advisory.
If a user’s version of the Microsoft Malware Protection Engine is equal to or greater than these versions, then they are not affected by this vulnerability and do not need to take any further action.
The Microsoft Malware Protection Engine helps ensure that malware definitions and the its own operations are kept up to date automatically inside applications.
Alerts are displayed in the Alerts node of the Monitoring workspace, or optionally can be emailed to specified users.
The default antimalware policy is applied when the Endpoint Protection client is installed.
“Typically, no action is required of enterprise administrators or end users to install updates for the Microsoft Malware Protection Engine, because the built-in mechanism for the automatic detection and deployment of updates will apply the update within 48 hours of release,” the company added.