FILE-OFFICE -- Snort detected traffic targeting vulnerabilities in files belonging to the Microsoft Office suite of software (Excel, PowerPoint, Word, Visio, Access, Outlook, etc.).
FILE-OFFICE Microsoft Office None type objclass RTF evasion attempt
This event is generated when an RTF is detected with an embedded class declared as "None". This could indicate an attempt to evade security products. Impact: Attempted User Privilege Gain Details: Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2017-11882 |
Loading description
|
CVE-2018-0802 |
Loading description
|