Snort Search


1-35304 - Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted OpenType font, aka "OpenType Font Driver Vulnerability." Impact: CVSS base score 9.3 CVSS impact score 10.0 CVSS exploitability score 8.6 confidentialityImpact COMPLETE integrityImpact COMPLETE availabilityImpact COMPLETE Details: Ease of Attack:

Rule

1-46952 - This event is generated when a user using Microsoft Internet Explorer 11 accesses a page where JavaScript modifies a variable that is reused when not handled by garbage collection. Impact: Attempted User Privilege Gain Details: CVE-2018-8267 is a use after free vulnerability in the Jscript scripting engine (jscript.dll) of Windows. The root cause is where a VAR points to an object, and the object is freed because its not rooted in the GC. Ease of Attack: Simple, it is not known if any exploits exist for this.

Rule