Sid 1-45396

Message

BROWSER-IE Microsoft Edge scripting engine toString use after free attempt

Summary

This event is generated when a use-after-free attempt is made against Microsoft Edge via toString method

Impact

Attempted User Privilege Gain

Detailed information

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Update to latest Microsoft Edge browser

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-0773