Patch Tuesday KB3182373 fixes Silverlight vulnerability

Madeleine Dean By: Madeleine Dean
2 minute read

Home » News » Patch Tuesday KB3182373 fixes Silverlight vulnerability

The latest Patch Tuesday roll out brought a series of important security updates to the Windows OS. Thanks to these patches, Microsoft is one step ahead the attackers when it comes to protecting users’ computers.

Patch Tuesday brought 14 security updates to all supported Windows versions, and 7 of them are critical patches which means you should install them as soon as possible. The other 7 updates are rated as important. One such update is KB3182373 that patches a vulnerability in Microsoft Silverlight allowing remote code execution if a user visits a compromised website that contains a specially crafted Silverlight application.

Attacker first lure users into visiting a compromised website by usually enticing them to click a link sent in either an email message or instant message.

The update addresses the vulnerability by correcting how Microsoft Silverlight allocates memory for inserting and appending strings in StringBuilder.

This Silverlight vulnerability could allow remote code execution when Microsoft Silverlight improperly allows applications to access objects in memory. In other words, the vulnerability could corrupt system memory, allowing attackers to execute arbitrary code by giving them the same permissions as the currently logged-on user. Moreover, if a user is logged on with administrative user rights, attackers can take complete control of the system.

All builds of Microsoft Silverlight previous to 5.1.50709.0 are affected by this vulnerability, and if you want to be sure you’re not running a possibly vulnerable build, install the KB3182373 update to bring Microsoft Silverlight to build version 5.1.50709.0. You can visit the Get Microsoft Silverlight page if you already installed the tool to check which version and build of Microsoft Silverlight you are currently running on your computer.

You can install the KB3182373 update from the Windows Update Center, the Microsoft Update Catalog website or from the Microsoft Download Center.

RELATED STORIES YOU NEED TO CHECK OUT:

Discussions

Next up

5 useful debugging software to quickly get rid of PC bugs

Daniel Segun By: Daniel Segun
Less than a 1 minute read

This post brings you a compilation of the best debugging software for Windows. So, if you own a Windows PC, and you are in need […]

Continue Reading

Password Managers fail to protect your master password properly

Irfa Batool avatar. By: Irfa Batool
2 minute read

Real shocking news circulating these days is that some most frequently used and authentic Password Managers such as 1Password, KeePass, LastPass, RoboForm and Dashlane for […]

Continue Reading

Download Windows 10 KB4487021 to fix major region-specific bugs

Rabia Noureen avatar. By: Rabia Noureen
2 minute read

Microsoft announced a bunch of cumulative updates for various versions of Windows 10. The updates were rolled out to all the Windows 10 Enterprise editions version 1607 […]

Continue Reading