HTTP: Microsoft Device Guard CVE-2018-8417 JScript Security Feature Bypass

This signature detects attempts to exploit a known vulnerability in the implementation of Device Guard on Microsoft Windows 10. An attacker can bypass Device Guard to leak sensitive information.

Extended Description

A security feature bypass vulnerability exists in Microsoft JScript that could allow an attacker to bypass Device Guard, aka "Microsoft JScript Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers.

Affected Products

Microsoft windows_server_2016

References

CVE: CVE-2018-8417

Short Name
HTTP:STC:SCRIPT:CVE2018-8417-BP
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Bypass CVE-2018-8417 Device Feature Guard JScript Microsoft Security
Release Date
11/13/2018
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Microsoft

CVSS Score

4.6

Found a potential security threat?