PT-2015-3205 · Microsoft · Silverlight

Published

2015-12-09

Updated

2018-10-12

CVE-2015-6165

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Microsoft Silverlight versions prior to 5.1.41105.00

Description The issue is related to the lack of protection for service data in the Silverlight platform, allowing remote attackers to bypass the ASLR protection mechanism via a crafted web site.

Recommendations For versions prior to 5.1.41105.00, update to version 5.1.41105.00 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2016-00925

CVE-2015-6165

Affected Products

Silverlight

PT-2015-3205 · Microsoft · Silverlight

CVE-2015-6165

Weakness Enumeration

Related Identifiers

Affected Products

References · 6