HTTP: Microsoft Windows CVE-2017-0156 Elevation Of Privileges

This signature detects attempts to exploit a known vulnerability against Microsoft Windows. A successful attack could allow the attacker to execute arbitrary commands with elevated privileges.

Extended Description

An elevation of privilege vulnerability exists in Windows 7, Windows 8.1, Windows RT 8.1, Windows 10, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 when the Microsoft Graphics Component fails to properly handle objects in memory, aka "Windows Graphics Component Elevation of Privilege Vulnerability."

Affected Products

Microsoft windows_8.1

References

BugTraq: 97507

CVE: CVE-2017-0156

Short Name
HTTP:STC:DL:CVE-2017-0156-EOP
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2017-0156 Elevation Microsoft Of Privileges Windows bid:97507
Release Date
04/18/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Microsoft

CVSS Score

6.9

Found a potential security threat?