OS-WINDOWS -- Snort has detected traffic targeting vulnerabilities in a Windows-based operating system. This does not include browser traffic or other software on the OS, but attacks against the OS itself.
OS-WINDOWS Microsoft Windows malformed shortcut file with comment buffer overflow attempt
This event is generated when a malformed Windows shortcut (.lnk) file is found traversing the network. Impact: Attempted User Privilege Gain Details: A large value contained in a Windows shortcut (*.lnk) file multiplies during execution, causing a buffer overflow condition that can lead to remote code execution against the victim. Ease of Attack: Simple, no working exploits are known at this time.
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-0825 |
Loading description
|