Think you have a false positive on this rule?

Sid 1-49150

Message

BROWSER-IE Microsoft Edge WebAssembly type confusion exploit attempt

Summary

This event is generated when a specially crafted webpage designed to exploit CVE-2019-0607 is detected.

Impact

Remote code execution

Detailed information

Affected systems

  • Microsoft Edge on Windows 10

Ease of attack

Simple

False positives

None known

False negatives

None known

Corrective action

Isolate and remediate the affected system in accordance with your organization's incident response policy.

Contributors

  • Cisco Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0607