OS-WINDOWS Microsoft Windows RRAS service arbitrary pointer dereference attempt
This event is generated when an attacker attempts an arbitrary pointer dereference against the Windows Routing and Remote Access Service.
Potential remote code execution
Rule checks for an attempt to cause an arbitrary pointer dereference against Microsoft's RRAS service.
Ease of attack
Implement the appropriate patches for this service.
- Cisco's Talos Intelligence Group