Think you have a false positive on this rule?

Sid 1-46930

Message

BROWSER-IE Microsoft Edge type confusion memory corruption attempt

Summary

This event is generated when a type confusion vulnerability is attempting to exploit Microsoft Edge

Impact

Attempted User Privilege Gain

Detailed information

A Type Confusion vulnerability has been found in Microsoft Edge. Successful exploitation of this vulnerability can achieve Remote Code Execution.

Affected systems

  • Microsoft Edge in Windows 10

Ease of attack

Simple

False positives

N/A

False negatives

N/A

Corrective action

Install the latest upgrade for Microsoft Edge

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8111