MS.Windows.Win32k.DDI.Privilege.Elevation
Description
This indicates an attack attempt to exploit a Elevation of Privilege vulnerability in Microsoft Windows.
The vulnerability is caused by out of bounds write when handling a crafted application. An attacker who successfully exploits this vulnerability can run arbitrary code in kernel mode.
Affected Products
Windows 10
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0189
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |