Think you have a false positive on this rule?

Sid 1-49132

Message

FILE-OFFICE Microsoft Excel information disclosure attempt

Summary

This event is generated when an attempt to get an information disclosure on Microsoft Excel, is detected

Impact

High

Detailed information

Affected systems

Microsoft Office Excel

Ease of attack

Simple

False positives

False negatives

Corrective action

Upgrade to the latest available Microsoft Office version available

Contributors

Cisco Talos Intelligence Group

Additional References

portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0669

©2019 Cisco and/or its affiliates. Snort, the Snort and Pig logo are registered trademarks of Cisco. All rights reserved.

Privacy Policy | Snort License | FAQ | Sitemap

Follow us on twitter