Rule Document 1:66210

Report a false positive

Rule Category

BROWSER-IE -- Snort has detected traffic known to exploit vulnerabilities present in the Internet Explorer browser, or products that have the Trident or Tasman engines.

Alert Message

BROWSER-IE Analyst Console Rule doc test rule used in determining ruledoc pipeline

Rule Explanation

THis rule is bogus and doesnt actually work but if you are seeing this on staging.snort.org then success!

What To Look For

This is the new Rule doc that should go up to snort.org

Known Usage

Attacks/Scans seen in the wild

False Positives

No known false positives

Contributors

Nah this was all me. no one else contributed

Rule Groups

No rule groups

CVE

CVE-2018-0935 CVE-2018-8353

Additional Links

portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-0935
portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-8353

Rule Vulnerability

Information Leak

Information Leakage happens when an attacker manipulates a system into revealing sensitive information, either through malformed input or by taking advantage of another feature of the system.

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2018-0935
 Loading description
CVE-2018-8353
 Loading description