BROWSER-IE -- Snort has detected traffic known to exploit vulnerabilities present in the Internet Explorer browser, or products that have the Trident or Tasman engines.
BROWSER-IE Microsoft Internet Explorer 11 JScript use-after-free attempt
Attempted User Privilege Gain
CVE-2018-8267 is a use after free vulnerability in the Jscript scripting engine
(jscript.dll) of Windows. The root cause is where a VAR points to an object, and
the object is freed because its not rooted in the GC.
Ease of Attack:
Simple, it is not known if any exploits exist for this.
What To Look For
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE ATT&CK Framework
For reference, see the MITRE ATT&CK vulnerability types here:
CVE Additional Information
CVE-2018-8267A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8243.
||Ease of Access||