Microsoft Silverlight DEP/ASLR Bypass Vulnerability
Last Update Date:
12 Mar 2014 12:37
Release Date:
12 Mar 2014
3897
Views
RISK: Medium Risk
TYPE: Clients - Graphics & Design
A security feature bypass vulnerability exists in Silverlight due to improper implementation of Data Execution Protection (DEP) and Address Space Layout Randomization (ASLR). The vulnerability could allow an attacker to bypass the DEP/ASLR security feature, most likely during or in the course of exploiting a remote code execution vulnerability.
Impact
- Security Restriction Bypass
System / Technologies affected
- Microsoft Silverlight 5
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Download location for patches:
http://technet.microsoft.com/en-us/security/bulletin/MS14-014
Vulnerability Identifier
Source
Related Link
Share with