OS-WINDOWS -- Snort has detected traffic targeting vulnerabilities in a Windows-based operating system. This does not include browser traffic or other software on the OS, but attacks against the OS itself.
OS-WINDOWS Total Meltdown side-channel information leak attempt
This event is generated when a binary with total meltdown indicators is downloaded. Impact: Attempted Administrator Privilege Gain Details: This rule looks for mandatory values for walking Windows page table entries to transition from virtual to physical address space when looking up memory otherwise inaccessable to a user. Ease of Attack: Hard
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2018-1038 |
Loading description
|