SID 1:47132

Report a false positive

Rule Category

FILE-OTHER -- Snort detected traffic targeting vulnerabilities in a file type that does not require enough rule coverage to have its own category.

Alert Message

FILE-OTHER Adobe Acrobat Pro EMF Alphablend memory corruption attempt

Rule Explanation

This event is generated when an attacker attempts to exploit CVE-2018-12789. Impact: Attempted User Privilege Gain Details: Ease of Attack:

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2018-12789 CVE-2018-15947 CVE-2018-15949 CVE-2018-15950 CVE-2018-15999 CVE-2018-16006 CVE-2018-5062

Additional Links

helpx.adobe.com/security/products/acrobat/APSB18-21.html
helpx.adobe.com/security/products/acrobat/APSB18-30.html
helpx.adobe.com/security/products/acrobat/apsb18-41.html

Rule Vulnerability

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2018-12789
 Loading description
CVE-2018-15947
 Loading description
CVE-2018-15949
 Loading description
CVE-2018-15950
 Loading description
CVE-2018-15999
 Loading description
CVE-2018-16006
 Loading description
CVE-2018-5062
 Loading description