Think you have a false positive on this rule?

Sid 1-49144

Message

BROWSER-IE Microsoft Edge type confusion exploit attempt

Summary

This event is generated when a specially crafted webpage designed to exploit CVE-2019-0606 is detected.

Impact

remote code execution

Detailed information

Affected systems

  • Microsoft Edge on Windows 10 systems

Ease of attack

Simple

False positives

None known

False negatives

None known

Corrective action

Isolate and remediate the affected system in accordance with your organization's incident response policies.

Contributors

  • Cisco Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0606