Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which allows remote attackers to execute arbitrary code or cause a denial of service (object-header corruption) via a crafted web site, aka "Silverlight Runtime Remote Code Execution Vulnerability."
References
Link | Resource |
---|---|
http://www.securitytracker.com/id/1034655 | Broken Link Third Party Advisory VDB Entry |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-006 | Patch Vendor Advisory |
http://www.securitytracker.com/id/1034655 | Broken Link Third Party Advisory VDB Entry |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-006 | Patch Vendor Advisory |
Configurations
History
21 Nov 2024, 02:40
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securitytracker.com/id/1034655 - Broken Link, Third Party Advisory, VDB Entry | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-006 - Patch, Vendor Advisory |
01 Jul 2024, 17:56
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microsoft:silverlight:*:*:*:*:*:*:*:* | |
References | () http://www.securitytracker.com/id/1034655 - Broken Link, Third Party Advisory, VDB Entry | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-006 - Patch, Vendor Advisory | |
CWE | NVD-CWE-noinfo |
Information
Published : 2016-01-13 05:59
Updated : 2024-11-21 02:40
NVD link : CVE-2016-0034
Mitre link : CVE-2016-0034
CVE.ORG link : CVE-2016-0034
JSON object : View
Products Affected
microsoft
- silverlight
CWE