KLA10717
Multiple vulnerabilities in Microsoft Silverlight
Updated: 06/01/2019
Detect date
?
12/08/2015
Severity
?
High
Description

Multiple serious vulnerabilities have been found in Microsoft Silverlight. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions.

Below is a complete list of vulnerabilities

  1. Improper requests handling can be exploited remotely via a specially designed Silverlight application to execute arbitrary code;
  2. Improper memory handling can be exploited remotely via a specially designed Silverlight application to bypass security restrictions.
Affected products

Microsoft Silverlight 5

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2015-6114
CVE-2015-6166
CVE-2015-6165

Impacts
?
ACE 
[?]

SB 
[?]
Related products
Microsoft Silverlight
CVE-IDS
?
CVE-2015-61144.3Warning
CVE-2015-61669.3Critical
CVE-2015-61654.3Warning
Microsoft official advisories
Microsoft Security Update Guide
KB list

3106614