HTTP: Microsoft Share Point CVE-2019-0604 Remote Code Execution 1
This signature detects attempts to exploit a known vulnerability against Microsoft Share Point. A successful attack can lead to arbitrary code execution.
Extended Description
A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0594.
Affected Products
Microsoft sharepoint_server
References
BugTraq: 106914
CVE: CVE-2019-0604
URL: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0604
Short Name
HTTP:EXPLOIT:CVE-2019-0604-RCE1
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
1 CVE-2019-0604 Code Execution Microsoft Point Remote Share bid:106914
Release Date
05/14/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3771
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5