Think you have a false positive on this rule?

Sid 1-49753


BROWSER-IE Microsoft Internet Explorer use-after-free attempt


This event is generated when a specially crafted HTML document that is designed to exploit CVE-2019-0862 is detected.


Use-after-free exploit attempt potentially resulting in arbitrary code execution of the attacker's choosing.

Detailed information

Affected systems

  • Internet Explorer on Windows 10 and prior versions of Windows.

Ease of attack


False positives

None known

False negatives

None known

Corrective action

Isolate the affected system and remediate it in accordance with your organization's incident response policy.


  • Cisco Talos Intelligence Group

Additional References