OS-WINDOWS Microsoft Windows NtGdiPlgBlt out-of-bounds write attempt
This event is generated when an attacker attempts to exploit an out-of-bounds write in the Windows Kernel.
Attempted Administrator Privilege Gain
This rule checks for attempts to exploit an out-of-bounds write in the Windows Kernel NtGdiPlgBlt function.
Ease of attack
- Cisco Talos Intelligence Group