Think you have a false positive on this rule?

Sid 1-49154

Message

BROWSER-IE Microsoft Edge Promise object context switch use-after-free attempt

Summary

This event is generated when a malicious crafted web page designed to exploit Microsoft Edge browser is detected.

Impact

Attempted User Privilege Gain

Detailed information

A use after free issue exists in Window's Edge. The vulnerability can be exploited to achieve RCE.

Affected systems

Ease of attack

False positives

None known

False negatives

None known

Corrective action

Please follow corporate update and patching procedures.

Contributors

  • Cisco Talos Intelligence Group

Additional References

  • portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0640