OS-WINDOWS -- Snort has detected traffic targeting vulnerabilities in a Windows-based operating system. This does not include browser traffic or other software on the OS, but attacks against the OS itself.
OS-WINDOWS Microsoft Windows use after free win32kbase.sys privilege escalation attempt
This event is generated when an attacker attempts to exploit a user after free vulnerability present in the win32kbase.sys driver. Impact: Attempted Administrative Privilege Gain Details: Rule checks for an attempt to exploit a user after free vulnerability present in the win32kbase.sys driver. Ease of Attack: Hard
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-0756 |
Loading description
|