Rule Category

Alert Message

Rule Explanation

This event is generated when an attempt to exploit Google Chrome via CVE-2017-5040 is detected. Impact: Attempted User Privilege Gain Details: A vulnerability exists in Google Chrome Browser's Javascript V8 engine. It is possible to craft Javascript in such a way that when calling Array.indexOf, properties of the array can be changed, and certain values in memory can be disclosed to the user. Ease of Attack:

What To Look For

Known Usage

No public information

False Positives

No known false positives


MITRE ATT&CK Framework



For reference, see the MITRE ATT&CK vulnerability types here:

Additional Links

CVE Additional Information