FILE-EXECUTABLE -- Snort detected traffic targeting vulnerabilites that are found in or delivered through executable files, regardless of platform. In those instances, Snort is able to correct traffic that has been altered.
FILE-EXECUTABLE Microsoft Windows Win32k privilege escalation attempt
This event is generated when an executable is detected that exploits the vulnerability outlined in CVE-2018-8404. Impact: Privilege Escalation Details: Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-8404 |
Loading description
|