Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-0034

KEV · Ransomware EPSS 54.87% · P98
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-0034

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which allows remote attackers to execute arbitrary code or cause a denial of service (object-header corruption) via a crafted web site, aka "Silverlight Runtime Remote Code Execution Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Silverlight运行时远程执行代码漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Silverlight是美国微软(Microsoft)公司的一套开发平台。该平台可构建适用于Web、桌面和移动设备的交互式应用程序。 Microsoft Silverlight 5.1.41212.0之前5版本中存在远程执行代码漏洞,该漏洞源于程序使用恶意解码器(可返回负偏移量从而导致Silverlight将不安全的对象标题替换为攻击者提供的内容)解码字符串。远程攻击者可利用该漏洞获得与当前登录用户相同的权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2016-0034

#POC DescriptionSource LinkShenlong Link
1CVE-2016-0034 Decompilehttps://github.com/hybridious/CVE-2016-0034-DecompilePOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2016-0034

登录查看更多情报信息。

Same Patch Batch · n/a · 2016-01-13 · 28 CVEs total

CVE-2016-0011Microsoft SharePoint安全功能绕过漏洞
CVE-2016-0035Microsoft Office 内存损坏漏洞
CVE-2016-0032Microsoft Exchange 欺骗漏洞
CVE-2016-0031Microsoft Exchange 欺骗漏洞
CVE-2016-0030Microsoft Exchange 欺骗漏洞
CVE-2016-0029Microsoft Exchange 欺骗漏洞
CVE-2016-0024Microsoft Chakra JavaScript脚本引擎内存损坏漏洞
CVE-2016-0020Microsoft Windows DLL加载特权提升漏洞
CVE-2016-0019Microsoft Windows远程桌面协议安全绕过漏洞
CVE-2016-0018Microsoft Windows DLL加载远程执行代码漏洞
CVE-2016-0016Microsoft Windows DLL加载远程执行代码漏洞
CVE-2016-0015Microsoft Windows DirectShow堆损坏远程执行代码漏洞
CVE-2016-0014Microsoft Windows DLL加载特权提升漏洞
CVE-2016-0012Microsoft Office ASLR绕过漏洞
CVE-2015-8466Swift3 安全漏洞
CVE-2016-0010Microsoft Office 内存损坏漏洞
CVE-2016-0009Microsoft Windows Win32k 远程执行代码漏洞
CVE-2016-0008Microsoft Windows GDI32.dll ASLR绕过漏洞
CVE-2016-0007Microsoft Windows装入点特权提升漏洞
CVE-2016-0006Microsoft Windows装入点特权提升漏洞

Showing top 20 of 28 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2016-0034

No comments yet

Leave a comment