HTTP: Microsoft Edge CVE-2016-3374 Security Bypass
This signature detects attempts to exploit a known vulnerability in Microsoft Edge. A successful attack can lead to a Security feature bypass within the context of the affected application.
Extended Description
The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3370.
Affected Products
Microsoft edge
References
CVE: CVE-2016-3374
Short Name
HTTP:STC:CVE-2016-3374-SEC
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Bypass CVE-2016-3374 Edge Microsoft Security
Release Date
09/13/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Microsoft
CVSS Score
4.3