HTTP: Microsoft Office Word CVE-2019-0540 Security Feature Bypass

This signature detects attempts to exploit a known vulnerability against Word component of Microsoft Office. Successful exploitation could result in disclosure of information which could be used to further compromise the target system.

Extended Description

A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An attacker could send a victim a specially crafted file, which could trick the victim into entering credentials, aka 'Microsoft Office Security Feature Bypass Vulnerability'.

Affected Products

Microsoft office_365_proplus

References

BugTraq: 106863

CVE: CVE-2019-0540

Short Name
HTTP:STC:CVE-2019-0540-SEC-BYPA
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Bypass CVE-2019-0540 Feature Microsoft Office Security Word bid:106863
Release Date
06/11/2019
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Microsoft

CVSS Score

4.3

Found a potential security threat?