Denial of Service Vulnerability in Microsoft Silverlight 4 by Microsoft
CVE-2011-1844

Currently unrated

Key Information:

Vendor: Microsoft
Status: Silverlight
Vendor: CVE Published:; 3 May 2011

What is CVE-2011-1844?

A memory leak exists in Microsoft Silverlight 4 that can permit remote attackers to create a denial of service condition. This happens via an application utilizing a popup control combined with a custom DependencyProperty property, leading to excessive memory consumption. The issue arises due to inadequate garbage collection mechanisms, enabling sustained memory usage that could impact system performance.

References

http://isc.sans.edu/diary.html?storyid=10747

x_refsource_MISC

http://support.microsoft.com/kb/2526954

vendor-advisoryx_refsource_MSKB

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 3, 2011