HTTP: Windows Common Log File System Driver CVE-2019-1214 Elevation of Privileges
This signature detects attempts to exploit a known vulnerability against Windows Common Log File System Driver. A successful attack can lead to elevation of privilege.
Extended Description
An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.
Affected Products
Microsoft windows_10_1803
References
CVE: CVE-2019-1214
Short Name
HTTP:STC:DL:CVE-2019-1214-EOP
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2019-1214 Common Driver Elevation File Log Privileges System Windows of
Release Date
09/10/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3797
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.2