CISA/NIST NVD Alert - CVE-2013-0074

Silverlight - Microsoft Silverlight Double Dereference Vulnerability

CISA/NIST Known Exploited Vulnerability Alert

CVE Identification Number

CVE-2013-0074

Vendor Name

Microsoft

Product

Silverlight

Vulnerability Name

Microsoft Silverlight Double Dereference Vulnerability

Description of Vulnerability

Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application.

Date Added to CISA Known Exploited Vulnerability Database

2022-05-25

Remediation

The impacted product is end-of-life and should be disconnected if still in use.

Link to NIST NVD CVE Listing

National Vulnerability Database Source