SID 1-52071

Rule Documentation
References

Rule Category

MALWARE-OTHER --

Alert Message

MALWARE-OTHER known malicious browser profiler script download attempt

Rule Explanation

This event is generated when an attacker attempts to exploit a use after free in Google Chrome. Impact: Attempted User Privilege Gain Details: This rule checks for attempts to exploit a use after free in Google Chrome's Blink library. Ease of Attack:

What To Look For

This rule looks for a known malicious browser profiler script.

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2019-13720

Additional Links

chromereleases.googleblog.com/2019/10/stable-channel-update-for-desktop_31.html

Rule Vulnerability

N/A

Not Applicable

CVE Additional Information

CVE-2019-13720

Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

Details
Severity	MEDIUM	Base Score	6.8
Impact Score	6.4	Exploit Score	8.6
Confidentiality Impact	PARTIAL	Integrity Impact	PARTIAL
Availability Impact	PARTIAL	Access Vector	NETWORK
Authentication	NONE	Ease of Access	MEDIUM