HTTP: Microsoft Edge CVE-2016-3388 Elevation of Privileges
This signature detects attempts to exploit a known vulnerability against Microsoft Edge. A successful attack could allow the attacker to execute arbitrary commands with elevated privileges.
Extended Description
Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3387.
Affected Products
Microsoft edge
References
CVE: CVE-2016-3388
Short Name
HTTP:STC:CVE-2016-3388-EOP
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-3388 Edge Elevation Microsoft Privileges of
Release Date
10/11/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Microsoft
CVSS Score
2.6