HTTP: Microsoft Internet Explorer CVE-2017-8727 Memory Corruption
This signature detects an attempt to exploit a known vulnerability against Microsoft Internet Explorer. Successful exploitation of this issue may grant an attacker remote code execution.
Extended Description
Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user, due to how Microsoft Windows Text Services Framework handles objects in memory, aka "Windows Shell Memory Corruption Vulnerability".
Affected Products
Microsoft windows_server_2016
References
CVE: CVE-2017-8727
Short Name
HTTP:STC:IE:CVE-2017-8727-MC
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2017-8727 Corruption Explorer Internet Memory Microsoft
Release Date
10/10/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.6