rule: another reference for CVE-2019-1388 rule
This commit is contained in:
Florian Roth
@@ -3,6 +3,7 @@ id: 02e0b2ea-a597-428e-b04a-af6a1a403e5c
|
||||
status: experimental
|
||||
description: Detects an explotation attempt in which the UAC consent dialogue is used to invoke an Internet Explorer process running as LOCAL_SYSTEM
|
||||
references:
|
||||
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1388
|
||||
- https://www.zerodayinitiative.com/blog/2019/11/19/thanksgiving-treat-easy-as-pie-windows-7-secure-desktop-escalation-of-privilege
|
||||
author: Florian Roth
|
||||
date: 2019/11/20
|
||||
|
||||
Reference in New Issue
Block a user