This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to bypass certain security restrictions which may lead to further attacks.
Microsoft Windows is prone to a local security-bypass vulnerability. This issue occurs because of a failure to properly enforce AppLocker rules. This may allow attackers to bypass security restrictions by using the macro or scripting features of Windows applications such as Microsoft Office.
- Various Windows platforms.