CVE-2016-0034

Sažetak

Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which allows remote attackers to execute arbitrary code or cause a denial of service (object-header corruption) via a crafted web site, aka "Silverlight Runtime Remote Code Execution Vulnerability."

Reference

http://www.securitytracker.com/id/1034655
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-006
http://www.securitytracker.com/id/1034655
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-006

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

10-02-2025 - 19:15

Objavljeno

13-01-2016 - 05:59