Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-0074
HistoryMar 13, 2013 - 12:55 a.m.

CVE-2013-0074

2013-03-1300:55:01
[email protected]
web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.938 High

EPSS

Percentile

99.1%

JSON

Microsoft Silverlight 5, and 5 Developer Runtime, before 5.1.20125.0 does not properly validate pointers during HTML object rendering, which allows remote attackers to execute arbitrary code via a crafted Silverlight application, aka “Silverlight Double Dereference Vulnerability.”

Affected configurations

NVD
Node
microsoftsilverlightRange5.05.1.20125.0

Related

zdt 3
openvas 4
securityvulns 3
nessus 2
threatpost 4
cisa_kev 1
symantec 1
seebug 1
metasploit 1
attackerkb 1
prion 1
cvelist 1
cve 1
packetstorm 1
checkpoint_advisories 1
thn 1
exploitdb 2
avleonov 1
qualysblog 1
zdt
zdt
MS12-022 Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access
2013-11-27 00:00:00
Microsoft Silverlight - ScriptObject Unsafe Memory Access (MS13-022/MS13-087) Exploit
2017-03-23 00:00:00
Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access
2013-11-26 00:00:00
openvas
openvas
Microsoft Silverlight Remote Code Execution Vulnerability (2814124)
2013-03-13 00:00:00
Microsoft Silverlight Remote Code Execution Vulnerability-2814124 (Mac OS X)
2013-03-13 00:00:00
Microsoft Silverlight Remote Code Execution Vulnerability (2814124) - Mac OS X
2013-03-13 00:00:00
securityvulns
securityvulns
Microsoft Silverlight code execution
2013-03-13 00:00:00
[PSA-2013-1022-1] Microsoft Silverlight Invalid Typecast / Memory Disclosure
2013-11-05 00:00:00
Microsoft Silverlight information leakage
2013-11-05 00:00:00
nessus
nessus
MS13-022: Vulnerability in Silverlight Could Allow Remote Code Execution (2814124) (Mac OS X)
2013-03-12 00:00:00
MS13-022: Vulnerability in Microsoft Silverlight Could Allow Remote Code Execution (2814124)
2013-03-12 00:00:00
threatpost
threatpost
Blackhole and Cool Exploit Kits Nearly Extinct
2013-11-26 11:19:11
Exploit Kit Adds Vector for Silverlight Vulnerability
2013-11-19 15:24:15
Critical IE, Windows Kernel Flaws Patched
2013-03-12 18:28:50
cisa_kev
cisa_kev
Microsoft Silverlight Double Dereference Vulnerability
2022-05-25 00:00:00
symantec
symantec
Microsoft Silverlight Double Deference CVE-2013-0074 Remote Code Execution Vulnerability
2013-03-12 00:00:00
seebug
seebug
MS12-022 Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access
2014-07-01 00:00:00
metasploit
metasploit
MS13-022 Microsoft Silverlight ScriptObject Unsafe Memory Access
2013-11-22 22:41:56
attackerkb
attackerkb
CVE-2013-0074
2013-03-13 00:00:00
prion
prion
Double free
2013-03-13 00:55:00
cvelist
cvelist
CVE-2013-0074
2013-03-13 00:00:00
cve
cve
CVE-2013-0074
2013-03-13 00:55:01
packetstorm
packetstorm
Microsoft Internet Explorer COALineDashStyleArray Unsafe Memory Access
2013-11-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Silverlight Pointer Dereference Memory Corruption (MS13-022; CVE-2013-0074; CVE-2013-3896)
2013-04-02 00:00:00
thn
thn
Netflix Users Targeted by Microsoft Silverlight Exploits
2014-05-21 01:59:00
exploitdb
exploitdb
Microsoft Internet Explorer - COALineDashStyleArray Unsafe Memory Access (MS12-022) (Metasploit)
2013-11-27 00:00:00
Microsoft Silverlight - ScriptObject Unsafe Memory Access (MS13-022/MS13-087) (Metasploit)
2013-03-12 00:00:00
avleonov
avleonov
September 2023: VM courses, Bahasa Indonesia, Russian Podcasts, Goodbye Tinkoff, MS Patch Tuesday, Qualys TOP 20, Linux, Forrester, GigaOm, R-Vision VM
2023-09-30 19:31:42
qualysblog
qualysblog
Qualys Top 20 Most Exploited Vulnerabilities
2023-09-04 14:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.938 High

EPSS

Percentile

99.1%

JSON
Related for NVD:CVE-2013-0074
zdt3openvas4securityvulns3nessus2threatpost4cisa_kev1symantec1seebug1metasploit1attackerkb1prion1cvelist1cve1packetstorm1checkpoint_advisories1thn1exploitdb2avleonov1qualysblog1