Information disclosure in Microsoft Silverlight

CVE-2015-6114

Microsoft Silverlight 5 before 5.1.41105.00 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Microsoft Silverlight Information Disclosure Vulnerability," a different vulnerability than CVE-2015-6…

Vulnerability class: Information Disclosure

EPSS: 0.175 (95.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Silverlight — versions 5.0
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

MS15-129 (x_refsource_MS, vendor-advisory)
1034321 (vdb-entry, x_refsource_SECTRACK)