Exploit Prevention Content version update 13259 for Endpoint Security and Host Intrusion Prevention is now available.
This update was posted to the update repository on January 10, 2024.
Summary of this release:
- New Signature 6273: Windows Error Reporting Service Elevation of Privilege
- New Signature 6274: T1218.011 Fileless Threat: Rundll32.exe abuse for proxy execution of possibly malicious code
- New Expert Rule has been added to the External GITHub repository for CVE-2024-20653
For more information, see the Release Notes.