MS.Edge.Address.Bar.Spoofing
Description
This indicates an attack attempt to exploit a URL Spoofing vulnerability in Microsoft Edge.
The issue is caused by an error in the vulnerable software when displaying an overlong URI in the address bar. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage, leading to other attacks.
Affected Products
Microsoft Edge on Windows 10 Version 1803 for 32-bit Systems
Microsoft Edge on Windows 10 Version 1803 for x64-based Systems
Impact
Information Spoofing: Remote attackers can serve spoof contents to unsuspecting targets.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8383
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-06-06 | 14.627 | Severity:high:medium |
2018-09-26 | 13.458 | Default_action:pass:drop |