The attacker could also take advantage of websites containing specially crafted content, including those that accept or host user-provided content or advertisements.Īn attacker would have no way to force users to visit a compromised website. To exploit the vulnerability, an attacker could host a website that contains a specially crafted Silverlight application and then convince a user to visit a compromised website. The most severe of the vulnerabilities could allow remote code execution if Microsoft Silverlight incorrectly handles certain open and close requests that could result in read- and write-access violations. This security update resolves vulnerabilities in Microsoft Silverlight.
In this article Security Update for Silverlight to Address Remote Code Execution (3106614)
0 kommentar(er)
