CB Response: Is there a way to track and alert on CVE-2019-1367?
book
Article ID: 287803
calendar_today
Updated On:
Products
Carbon Black EDR (formerly Cb Response)
Issue/Introduction
Is it possible to track systems affectecd by CVE-2019-1367?
Environment
CB Response Server: All Versions
Internet Explorer: Prior to September 23, 2019 update
Resolution
Tracking the CVE within Response has caused performance impacts due to the large amounts of event data captured when attempting to capture this behavior.
It is suggested to follow Microsoft's advice to patch Internet Explorer to at least the September 23, 2019 cumulative updates to address this CVE.