Think you have a false positive on this rule?

Sid 1-46183

Message

FILE-OFFICE Microsoft Office Excel graphics remote code execution attempt

Summary

This event is generated when graphics related remote code execution is attempted in MS Excel

Impact

Misc activity

Detailed information

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-1028