Think you have a false positive on this rule?

Sid 1-45377

Message

BROWSER-IE Microsoft Edge scripting engine memory corruption attempt

Summary

This event is generated when an attacker attempts to exploit an out of bounds vulnerability present in Microsoft Edge.

Impact

Attempted User Privilege Gain

Detailed information

Rule checks for an attempt to exploit an out of bounds memory corruption vulnerability present in Microsoft Edge's scripting engine.

Affected systems

  • Microsoft Edge

Ease of attack

Hard

False positives

Not known

False negatives

Not known

Corrective action

Implement the patches described here: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-0769.

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • url