What is CVE-2015-6165?

CVE-2015-6165 is a vulnerability in Microsoft Silverlight, classified under Information Disclosure. Published 2015-12-09.

Is CVE-2015-6165 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Information disclosure in Microsoft Silverlight

CVE-2015-6165

Microsoft Silverlight 5 before 5.1.41105.00 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka "Microsoft Silverlight Information Disclosure Vulnerability," a different vulnerability than CVE-2015-6…

Vulnerability class: Information Disclosure

EPSS: 0.175 (95.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Silverlight — versions 5.0
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

MS15-129 (x_refsource_MS, vendor-advisory)
1034321 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2015-6165?: CVE-2015-6165 is a vulnerability in Microsoft Silverlight, classified under Information Disclosure. Published 2015-12-09.
Is CVE-2015-6165 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.