<< Back
CVE Number Vulnerability Product Severity Date
MS13-087 Vulnerability in Silverlight Could Allow Information Disclosure (2890788) Microsoft Silverlight Important 09-10-2013

Technical Information

Brief overview of the risk:
This security update resolves a privately reported vulnerability in Microsoft Silverlight. The vulnerability could allow information disclosure if an attacker hosts a website that contains a specially crafted Silverlight application that is designed to exploit this vulnerability and then convinces a user to view the website. The attacker could also take advantage of compromised websites and websites that accept or host user-provided content or advertisements. Such websites could contain specially crafted content that could exploit this vulnerability.
Detailed Information on the risk:
An information disclosure vulnerability exists in how Silverlight handles certain objects in memory.Further information on this exploit is available at : MS13-087

Affected Software

Microsoft Silverlight 5