HTTP: Microsoft Windows CVE-2020-16922 Spoofing
This signature detects attempts to exploit a known vulnerability against Microsoft Windows. A successful attack can lead to security bypass.
Extended Description
A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent improperly signed files from being loaded. The update addresses the vulnerability by correcting how Windows validates file signatures.
Affected Products
Microsoft windows_server_2016
References
CVE: CVE-2020-16922
Short Name
HTTP:STC:DL:CVE-2020-16922-SB
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2020-16922 Microsoft Spoofing Windows
Release Date
10/06/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3665
False Positive
Unknown
Vendors
Microsoft
CVSS Score
2.1