©2026 Cisco and/or its affiliates. Snort, the Snort and Pig logo are registered trademarks of Cisco. All rights reserved.
FILE-OFFICE -- Snort detected traffic targeting vulnerabilities in files belonging to the Microsoft Office suite of software (Excel, PowerPoint, Word, Visio, Access, Outlook, etc.).
FILE-OFFICE Microsoft Office security feature bypass attempt
This rule looks for RTF control words that are known to bypass OLE security mitigations in Microsoft Office products. Attackers can leverage this vulnerability to execute arbitrary OLE objects and potentially gain remote code execution.
This rule looks for attempts to exploit a security bypass in Microsoft Office.
No public information
Known false positives, with the described conditions
This rule can trigger on valid RTF files.
Cisco Talos Intelligence Group
No rule groups
Authentication Bypass
An Authentication Bypass occurs when there is a way to avoid providing user credentials to a system before performing restricted operations on said system.
CVE-2026-21514 |
Loading description
|
©2026 Cisco and/or its affiliates. Snort, the Snort and Pig logo are registered trademarks of Cisco. All rights reserved.