Think you have a false positive on this rule?

Sid 1-45877

Message

BROWSER-IE Microsoft Internet Explorer scripting engine memory corruption attempt

Summary

This event is generated when a user after free condition is used to trigger memory corruption in Internet Explorer

Impact

Attempted User Privilege Gain

Detailed information

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-0935
  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8353