Microsoft Silverlight 5, and 5 Developer Runtime, before 5.1.20125.0 does not properly validate pointers during HTML object rendering, which allows remote attackers to execute arbitrary code via a crafted Silverlight application, aka Silverlight Double Dereference Vulnerability.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Silverlight | Microsoft | * | 5.0.61118.0 (including) |
Silverlight | Microsoft | 5.0.60401.0 (including) | 5.0.60401.0 (including) |
Silverlight | Microsoft | 5.0.60818.0-rc (including) | 5.0.60818.0-rc (including) |