CyberSec.Space Logo
返回 CVE 浏览器

CVE-2010-0019

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0130%
EPSS Percentile41.12th
Published2010年8月11日
Last Modified2026年4月29日

Vulnerability Description

Microsoft Silverlight 3 before 3.0.50611.0 on Windows, and before 3.0.41130.0 on Mac OS X, does not properly handle pointers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and framework outage) via a crafted web site, aka "Microsoft Silverlight Memory Corruption Vulnerability."

Affected Platforms (CPE)

📦
Microsoft

Silverlight

<= 3.0.40818.0
📦
Microsoft

Silverlight

= 3.0.40624.00
📦
Microsoft

Silverlight

= 3.0.40723.0
📦
Microsoft

Silverlight

<= 3.0.50106.0
📦
Microsoft

Silverlight

= 3.0.40818.0

References & Advisories

🔗 http://www.us-cert.gov/cas/techalerts/TA10-222A.html
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-060
🔗 http://www.us-cert.gov/cas/techalerts/TA10-222A.html
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-060

相关漏洞威胁

CVE-2011-06649.3

Microsoft .NET Framework 2.0 SP1 and SP2, 3.5 Gold and SP1, 3.5.1, and 4.0, and Silverlight 4 before 4.0.60531.0, does not properl...

CVE-2009-24979.3

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not...

CVE-2010-18989.3

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP1, 2.0 SP2, 3.5, 3.5 SP1, and 3.5.1, and Microsoft Silverlight...

CVE-2011-12539.3

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5.1, and 4, and Silverlight 4 before 4.0.60831, does not properly restrict i...