493 matches found
SUSE CVE-2011-3389
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HT...
The vulnerability in the programming interface of DirectWrite on the Microsoft .NET Framework software platform, as well as in Microsoft Office applications, the Live Meeting web conference software, Microsoft Lync instant messaging software, and the Microsoft Silverlight software platform, arises due to errors in syntax analysis of TrueType fonts. This vulnerability allows an attacker to execute arbitrary code.
The vulnerability of the DirectWrite programming interface on the Microsoft .NET Framework, Microsoft Office applications, the web conferencing software Live Meeting, the instant messaging software Lync, and the Microsoft Silverlight platform is related to errors in syntax analysis of TrueType...
The vulnerability of the Microsoft Silverlight software platform, related to insufficient checking of pointers for access to elements, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Microsoft Silverlight software platform lies in the insufficient checking of pointers used to access elements in memory when processing objects. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information by opening a specially...
The vulnerability of the Microsoft Silverlight software platform, related to insufficient checking of pointers, allows a perpetrator to execute arbitrary code or gain access to read, modify, or delete data.
The vulnerability of the Microsoft Silverlight software platform lies in the insufficient checking of pointers used to access elements when processing HTML objects. Exploiting this vulnerability allows an attacker to execute arbitrary code or gain access to read, modify, or delete data by running...
Microsoft Windows Remote Code Execution Vulnerability
A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts...
Microsoft Silverlight Information Disclosure Vulnerability
Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application...
Microsoft Silverlight Double Dereference Vulnerability
Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application...
Microsoft Silverlight Runtime Remote Code Execution Vulnerability
Microsoft Silverlight mishandles negative offsets during decoding, which allows attackers to execute remote code or cause a denial-of-service DoS...
BIOPASS RAT: New Malware Sniffs Victims via Live Streaming
We discovered a new malware that targets online gambling companies in China via a watering hole attack, in which visitors are tricked into downloading a malware loader disguised as a legitimate installer for well-known apps such as Adobe Flash Player or Microsoft Silverlight...
VulnCheck KEV: CVE-2013-3896
Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application...
VulnCheck KEV: CVE-2015-1671
A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts...
MS15-049: Vulnerability in Silverlight could allow elevation of privilege: May 12, 2015
Resolves a vulnerability in Microsoft Silverlight that could allow elevation of privilege if a specially crafted Silverlight application is run on an affected system.SummaryThis security update resolves a vulnerability in Microsoft Silverlight. The vulnerability could allow elevation of privilege...
Mono MonoX CMS Code Issue Vulnerability
MonoX CMS is an ASP.NET-based content management system CMS and social networking platform from Mono Croatia. A security vulnerability exists in Mono MonoX CMS 5.1.40.5152 and earlier versions, which stems from an insecure behavior in the ModuleGallery.HTML5Upload,...
Telerik UI for Silverlight Path Traversal Vulnerability
Telerik UI for Silverlight is a suite of UI User Interface controls for application development from Telerik Bulgaria. A security vulnerability exists in Telerik UI for Silverlight versions prior to 2020.1.330. The vulnerability can be exploited by an attacker to upload a file to an arbitrary...
CVE-2020-11414
An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...
CVE-2020-11414
An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...
Directory traversal
An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...
CVE-2020-11414
CVE-2020-11414 affects Progress Telerik UI for Silverlight prior to 2020.1.330. The RadUploadHandler in RadUpload for Silverlight accepts a web request containing the file location and several parameters, but the location must be inside the directory where the upload handler is defined. Before 20...
CVE-2020-11414
An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...
July 2014 update for Microsoft Silverlight 5
July 2014 update for Microsoft Silverlight 5 Should I install this update This update is released on July 23, 2014 and offers a new build version 5.1.30514.0 of Microsoft Silverlight. For more information about Silverlight, see the What is Silverlight section. If you have Silverlight installed, o...