HTTP: Microsoft Windows CVE-2019-1439 Buffer Overflow
This signature detects attempts to exploit a known vulnerability against Microsoft Windows. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.
Extended Description
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
Affected Products
Microsoft windows_server_2016
References
CVE: CVE-2019-1439
Short Name
HTTP:STC:DL:WINDOWS-RTF-BU-OVFL
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Buffer CVE-2019-1439 Microsoft Overflow Windows
Release Date
01/16/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3415
False Positive
Unknown
Vendors
Microsoft
CVSS Score
4.3