virus logo Intrusion Prevention

MS.Edge.AppendLeftOverItemsFromEndSegment.Out.Of.Bounds.Read

description-logoDescription

This indicates an attack attempt to exploit an Out Of Bounds Read Vulnerability in Microsoft Edge Scripting Engine.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted webpage. A remote attacker can exploit this to gain unauthorized access to sensitive information.

affected-products-logoAffected Products

ChakraCore
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1703 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1511 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1607 for x64-based Systems
Microsoft Edge (EdgeHTML-based) on Windows Server 2016
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1709 for 32-bit Systems
Microsoft Edge (EdgeHTML-based) on Windows 10 Version 1709 for x64-based Systems

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0767

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-02-11 15.775 Default_action:pass:drop
2019-12-13 15.744
ID 48582
Created Dec 13, 2019
Updated Feb 10, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2018-0767
Exploit Prediction Score 96.18%
Default Action drop
Active
Affected OS Windows
Affected App IE