BROWSER-CHROME -- Snort has detected suspicious traffic known to exploit vulnerabilities present in the Chrome browser. These rules are separate from the "browser-webkit" category; while it uses the Webkit rendering engine, there's a lot of other features to create a secondary Chrome category.
BROWSER-CHROME Google Chrome FileSystemObject function call
This rule is looking for Scripting.FileSystemObject within the JavaScript in HTML pages that indicates the intention of running commands on the local filesystem.
This event is generated when a call to FileSystemObject is detected in Google Chrome.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
Escalation of Privilege
An Escalation of Privilege (EOP) attack is any attack method that results in a user or application gaining permissions to access resources they normally would not have access to.
CVE-2009-3931 |
Loading description
|
Tactic: Privilege Escalation
Technique: Bypass User Account Control
For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org