HTTP: Microsoft Edge COptionsCollectionCacheItem Out of Bounds Read
This signature detects attempts to exploit a known vulnerability in Microsoft Edge. Successful exploitation could lead to arbitrary code execution in the security context of the target user.
Extended Description
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8731, CVE-2017-8751, and CVE-2017-11766.
Short Name
HTTP:STC:IE:CVE-2017-8734-OOB
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Bounds COptionsCollectionCacheItem CVE-2017-8734 Edge Microsoft Out Read bid:100738 of
Release Date
10/11/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3799
False Positive
Unknown
CVSS Score
7.6