HTTP: Microsoft Browsers CVE-2018-0866 Scripting Engine Memory Corruption

This signature detects an attempt to exploit an Use-After-Free Vulnerability in Microsoft Browsers. Successful exploitation could allow an attacker to execute arbitrary code into the application's context.

Extended Description

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, and CVE-2018-0861.

References

CVE: CVE-2018-0866

Short Name
HTTP:STC:IE:CVE-2018-0866-MC
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Browsers CVE-2018-0866 Corruption Engine Memory Microsoft Scripting
Release Date
02/13/2018
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3797
False Positive
Unknown
CVSS Score

9.3

Found a potential security threat?