What versions of Microsoft Silverlight 5 are affected by the vulnerabilities? Please refer to the documentation of your browser to learn more about how to disable or remove plug-ins. For more information about Microsoft Silverlight, see the official site, Microsoft Silverlight. To run Microsoft Silverlight applications, most web browsers, including Microsoft Internet Explorer, require Microsoft Silverlight to be installed and the corresponding plug-in to be enabled. Which web browsers support Microsoft Silverlight applications? Microsoft Silverlight 5 Developer Runtime when installed on all supported releases of Microsoft Windows servers (3126036) Microsoft Silverlight 5 when installed on all supported releases of Microsoft Windows servers (3126036) Microsoft Silverlight 5 Developer Runtime when installed on all supported releases of Microsoft Windows clients (3126036) Microsoft Silverlight 5 when installed on all supported releases of Microsoft Windows clients (3126036) Microsoft Silverlight 5 Developer Runtime when installed on Mac (3126036) Microsoft Silverlight 5 when installed on Mac (3126036) Silverlight Runtime Remote Code Execution Vulnerability - CVE-2016-0034 For information regarding the likelihood, within 30 days of this security bulletin’s release, of the exploitability of the vulnerability in relation to its severity rating and security impact, please see the Exploitability Index in the January bulletin summary. The severity ratings indicated for each affected software assume the potential maximum impact of the vulnerability. To determine the support life cycle for your software version or edition, see Microsoft Support Lifecycle. Versions or editions that are not listed are either past their support life cycle or are not affected. The following software versions or editions are affected. Affected Software and Vulnerability Severity Ratings For more information about the vulnerabilities, see the Vulnerability Information section.įor more information about this update, see Microsoft Knowledge Base Article 3126036. The update addresses the vulnerabilities by correcting how Microsoft Silverlight validates decoder results. For more information, see the Affected Software section. This security update is rated Critical for Microsoft Silverlight 5 and Microsoft Silverlight 5 Developer Runtime when installed on Mac or all supported releases of Microsoft Windows. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email or instant message that takes users to the attacker's website. An attacker would have no way to force users to visit a compromised website. The vulnerability could allow remote code execution if a user visits a compromised website that contains a specially crafted Silverlight application. This security update resolves a vulnerability in Microsoft Silverlight. Published: Janu| Updated: January 14, 2016 Feedback In this article Security Update for Silverlight to Address Remote Code Execution (3126036)
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |