NotCVE - vendor:"Microsoft" product:"Silverlight" version:" <= 4.0.60129.0"

Page 2 of 13 results (0.003 seconds)

CVSS: 7.8EPSS: 19%CPEs: 7EXPL: 0

CVE-2011-1845

https://notcve.org/view.php?id=CVE-2011-1845

03 May 2011 — Multiple memory leaks in the DataGrid control implementation in Microsoft Silverlight 4 before 4.0.60310.0 allow remote attackers to cause a denial of service (memory consumption) via an application involving (1) subscriptions to an INotifyDataErrorInfo.ErrorsChanged event or (2) a TextBlock or TextBox element. Múltiples pérdidas de memoria en la implementación del control DataGrid en Microsoft Silverlight v4 antes de v4.0.60310.0, permite a atacantes remotos provocar una denegación de servicio (consumo de ... • http://isc.sans.edu/diary.html?storyid=10747 • CWE-399: Resource Management Errors •

CVSS: 9.3EPSS: 54%CPEs: 18EXPL: 0

CVE-2010-1898

https://notcve.org/view.php?id=CVE-2010-1898

11 Aug 2010 — The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP1, 2.0 SP2, 3.5, 3.5 SP1, and 3.5.1, and Microsoft Silverlight 2 and 3 before 3.0.50611.0 on Windows and before 3.0.41130.0 on Mac OS X, does not properly handle interfaces and delegations to virtual methods, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka "Microsoft Silverlight and Microsoft .NE... • http://www.us-cert.gov/cas/techalerts/TA10-222A.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 9.3EPSS: 21%CPEs: 9EXPL: 0

CVE-2010-0019

https://notcve.org/view.php?id=CVE-2010-0019

11 Aug 2010 — Microsoft Silverlight 3 before 3.0.50611.0 on Windows, and before 3.0.41130.0 on Mac OS X, does not properly handle pointers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and framework outage) via a crafted web site, aka "Microsoft Silverlight Memory Corruption Vulnerability." Microsoft Silverlight v3 anterior a v3.0.50611.0 en Windows, y anterior a v3.0.41130.0 en Mac OS X, no maneja punteros adecuadamente, lo que permite a atacantes remotos, ejecu... • http://www.us-cert.gov/cas/techalerts/TA10-222A.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •

1 2