Microsoft Silverlight双重释放远程代码执行漏洞(CVE-2012-0176)(MS12-034)

BUGTRAQ ID: 53360 CVE ID: CVE-2012-0176 Microsoft Silverlight是跨浏览器、跨平台的.NET实现，用于为Web构建媒体体验和交互应用。 Microsoft Silverlight 中存在一个远程执行代码漏洞，它可能允许特制的 Silverlight 应用程序以不安全的方式访问内存。成功利用此漏洞的攻击者可以在登录用户的安全上下文中运行任意代码。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 0 Microsoft...

CVE-2012-0176

CVE-2012-0176 affects Microsoft Silverlight 4 on Windows prior to 4.1.10329, with a double-free vulnerability in memory handling when rendering crafted XAML glyphs that enables remote code execution. This issue is documented under MS12-034, which patches multiple components including Silverlight....

MS12-034: Combined Security Update for Microsoft Office, Windows, .NET Framework, and Silverlight (2681578)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the Win32k TrueType font parsing engine that allows an unauthenticated, remote attacker to execute arbitrary code by convincing a user to open a Word document containi...

Microsoft Security Update For Microsoft Office, .NET Framework, and Silverlight (2681578)

This host is missing a critical security update according to Microsoft Bulletin MS12-034. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Silverlight Double-Free Remote Code Execution (MS12-034; CVE-2012-0176)

A remote code execution vulnerability has been reported in Microsoft Silverlight...