HTTP: Microsoft Windows CVE-2017-0167 Information Disclosure
This signature detects attempts to exploit a known vulnerability against Microsoft Windows. A successful attack can lead to Information Disclosure.
Extended Description
An information disclosure vulnerability exists in Windows 8.1, Windows RT 8.1, Windows Server 2012 R2, Windows 10, and Windows Server 2016 when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system, a.k.a. "Windows Kernel Information Disclosure Vulnerability."
Affected Products
Microsoft windows_8.1
References
CVE: CVE-2017-0167
Short Name
HTTP:STC:DL:CVE-2017-0167-ID
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2017-0167 Disclosure Information Microsoft Windows
Release Date
04/05/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Microsoft
CVSS Score
2.1