HTTP: Microsoft Windows Kernel CVE-2019-0767 Information Disclosure

This signature detects attempts to exploit a known vulnerability against Microsoft Windows. A successful attack could obtain information to further compromise the user's system.

Extended Description

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0775, CVE-2019-0782.

Affected Products

Microsoft windows_server_2016

References

CVE: CVE-2019-0767

Short Name
HTTP:STC:CVE-2019-0767-ID
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2019-0767 Disclosure Information Kernel Microsoft Windows
Release Date
03/05/2019
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Microsoft

CVSS Score

2.1

Found a potential security threat?