FILE-EXECUTABLE -- Snort detected traffic targeting vulnerabilites that are found in or delivered through executable files, regardless of platform. In those instances, Snort is able to correct traffic that has been altered.
FILE-EXECUTABLE Windows Microsoft Remote Desktop Services remote code execution attempt
This event is generated when an attempt to exploit a vulnerability in Microsoft RDP services has been detected Impact: High Details: Ease of Attack: Simple
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2019-0788 |
Loading description
|