Think you have a false positive on this rule?

Sid 1-46228

Message

BROWSER-IE Microsoft Internet Explorer javascript memory corruption attempt

Summary

This event is generated when an attempt to exploit CVE-2018-1001.

Impact

Attempted User Privilege Gain

Detailed information

Affects Microsoft Internet Explorer

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Apply patches to the affected system. Investigate host for possible compromise.

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-1001