Null Pointer Vulnerability in Microsoft Silverlight 5
CVE-2013-3178

Currently unrated

Key Information:

Vendor: Microsoft
Status: Silverlight
Vendor: CVE Published:; 10 July 2013

What is CVE-2013-3178?

Microsoft Silverlight 5 versions prior to 5.1.20513.0 are vulnerable due to improper initialization of arrays. This flaw can be exploited by remote attackers to execute arbitrary code or cause denial of service by crafting malicious Silverlight applications.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securitytracker.com/id/1028755

vdb-entryx_refsource_SECTRACK

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

56% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 10, 2013
Vulnerability Reserved
Apr 17, 2013