Memory Leak Vulnerability in Microsoft Silverlight DataGrid Control
CVE-2011-1845

Currently unrated

Key Information:

Vendor: Microsoft
Status: Silverlight
Vendor: CVE Published:; 3 May 2011

What is CVE-2011-1845?

Multiple memory leak vulnerabilities exist in the DataGrid control of Microsoft Silverlight 4, prior to version 4.0.60310.0. Remote attackers can exploit these vulnerabilities to cause a denial of service by consuming memory through specific applications that subscribe to the INotifyDataErrorInfo.ErrorsChanged event or manipulate TextBlock and TextBox elements. This exploit can lead to significant system performance degradation, impacting overall usability.

References

http://isc.sans.edu/diary.html?storyid=10747

x_refsource_MISC

http://support.microsoft.com/kb/2526954

vendor-advisoryx_refsource_MSKB

EPSS Score

19% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 3, 2011