Kaspersky Lab discovers Silverlight zero-day vulnerability

Brink

Brink

Administrator
Staff member
Local time
12:59 AM
Messages
74,829
Location
Oklahoma
Kaspersky Lab has discovered a dangerous zero-day vulnerability in Silverlight, potentially placing millions of users at risk.

In a blog post on Wednesday, the cybersecurity firm said the vulnerability would allow an attacker to gain full access to a compromised computer and execute malicious code to steal secret information, conduct surveillance and cause wholesale destruction if they so wished.

Silverlight is a web application framework developed by Microsoft for supporting and displaying information-rich content on the Web. Used by millions of PC owners worldwide across different operating systems, it is not common for security flaws in the framework to be reported -- but vulnerabilities could prove calamitous.

The vulnerability, CVE-2016-0034, was discovered after Ars Technica revealed an alleged link between exploit and surveillance tool seller Hacking Team and Vitaliy Toropov, an independent exploit-writer...
Click to expand...


Read more: Kaspersky Lab discovers Silverlight zero-day vulnerability | ZDNet
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Self built custom
OS
64-bit Windows 11 Pro for Workstations
CPU
Intel i7-8700K OC'd to 5 GHz
Motherboard
ASUS ROG Maximus XI Formula Z390
Memory
64 GB (4x16GB) G.SKILL TridentZ RGB DDR4 3600 MHz
Graphics Card(s)
ASUS ROG-STRIX-GTX1080TI-O11G-GAMING
Sound Card
Integrated
Monitor(s) Displays
2 x Samsung Odyssey G7 27"
Screen Resolution
2560x1440
Hard Drives
1TB Samsung 990 PRO M.2,
4TB Samsung 990 PRO PRO M.2,
TerraMaster F8 SSD Plus NAS
PSU
Seasonic Prime Titanium 850W
Case
Thermaltake Core P3
Cooling
Corsair Hydro H115i
Keyboard
Logitech wireless K800
Mouse
Logitech MX Master 4
Internet Speed
2 Gb/s Download and 100 Mb/s Upload
Antivirus
Malwarebyte Anti-Malware Premium
Browser
Google Chrome
Other Info
Logitech Z625 speaker system,
Logitech BRIO 4K Pro webcam,
HP Color LaserJet Pro MFP M477fdn,
APC SMART-UPS RT 1000 XL - SURT1000XLI,
Galaxy S23 Plus phone
Thanks Brink.

I received a Microsoft Silver light update yesterday as part of Jan 2016 updates. It's KB3126036, so I wonder if this is in response to the Kaspersky disclosure.
 
Last edited:

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Self built using existing case
OS
Windows 7 Home Premium 64 bit sp1
CPU
Intel i5 3570 3.4Ghz Ivy Bridge SKT 1155 quad core
Motherboard
Gigabyte Z77-HD3 SKT 1155 2xSata 3, 4x USB 3.0
Memory
G-Skill Rip Jaws 16Gb (8x2) DDR3 -1600 PC3 12800 CL 10 red
Graphics Card(s)
Gigabyte NVIDIA GT610 1Gb DDR3 810/1200 PCI-E 2.0 Silent
Sound Card
NVIDIA High Definition & Realtech High Definition Audio
Monitor(s) Displays
2 x Philips 226V4L 16:9 aspect ratio
Screen Resolution
1920 x 1080 HD
Hard Drives
Samsung 840 Pro 256gb SSD, SATA 3.
Hitachi Touro Portable 1tb, USB 3.0 HDD used for image b/ups.
PSU
Corsair VS450
Case
Codeng
Cooling
PSU fan & CPU fan
Keyboard
Logitech
Mouse
Logitech Wireless trackball M570
Internet Speed
Wireless 3G. 3mg down & 550kb up.
Antivirus
Bitdefender Internet Security 2020
Browser
Opera (Current Version) & Firefox
Other Info
MS Office 2013 Pro. Davis weather station software. MGE Nova 600 avr UPS.
Ranger4 said:
Thanks Brink.

I received a Microsoft Sliver light update yesterday as part of Jan 2016 updates. It's KB3126036, so I wonder if this is in response to the Kaspersky disclosure.
Click to expand...

I too received that today, as an optional update on both my machines, having already removed Silverlight from the only one that ever had it installed. When I uninstalled Silverlight I had a succession of updates from 2012 trying to re-install it but I hid those, as I have hidden KB3126036.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom build by PC Specialist
OS
Windows 7 Home Premium 64
CPU
AMD Phenom II X4 955
Motherboard
Asus M4A78T-E
Memory
8GB Corsair XMS3 DDR3
Graphics Card(s)
Gigabyte Geforce GTX 960 2GB
Sound Card
SB Audigy
Monitor(s) Displays
BenQ 24"
Screen Resolution
1920 x 1080
Hard Drives
500GB Serial ATA
PSU
1010W Quiet Quad Rail
Case
Antec 900
Cooling
Fenrir
Keyboard
Corsair
Mouse
Logitech
Internet Speed
20mbps
Antivirus
MSE plus MBAM 2.x Free
Browser
Chrome
Other Info
Second desktop different spec but similar level.
Do we need Sliverlight nowwaday's ?
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
HP Presario CQ70
OS
windows 7 professional 64 bit
CPU
CPU Genuine Intel (R) CPU [email protected]
Motherboard
APCI x 64 - based PC
Memory
RAM 3 GB
Graphics Card(s)
Toshiba MK2555 GSX ATA
Sound Card
Conexant High Def Smart Audio 221,
Monitor(s) Displays
monitor Generic PnP.
Screen Resolution
?
Hard Drives
HDAUDIO Soft Data Fax Modern with smart CP
PSU
?
Keyboard
Standard PS/2 keyboard
Mouse
PS/2 Compatible mouse
Antivirus
Hyjackthis and Superanti spyware, Mamb Ccleaner
Browser
Google Chrome
Haven't had it installed for over 6 months now, along with flash and java. It's not something I need on my pc. Certainly doesn't affect my day to day activities.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom Build
OS
Win 7 Ultimate, Win 8.1 Pro, Linux Mint 19 Cinnamon (All 64-Bit)
CPU
Intel i5 4690K
Motherboard
Gigabyte Z97X-UD3H
Memory
Corsair Vengeance LP 32GB DDR3
Graphics Card(s)
MSI GTX 1060 GAMING X 6GB
Sound Card
Onboard
Hard Drives
Samsung 850 EVO 250GB SSD (x2)
Samsung 860 EVO 1TB SSD (x2)
Crucial MX300 525GB SSD
WD Blue 2TB 5400rpm Intellipark Disabled (x2)
PSU
Corsair HX750i
Case
Phanteks Enthoo Pro
Cooling
CM Hyper 212 EVO on CPU, Noctua Redux NF-P14S 1500rpm (x6)
Keyboard
Corsair K70 RGB LUX
Mouse
Corsair Sabre RGB
Antivirus
Avast Free, MalwareBytes, SAS & CryptoPrevent
Browser
Chrome
Other Info
StarTech PEXESAT322I 2 Port PCI-E SATA Card
ASUS PCE-AC56 Dual-band AC1300 Wireless Card
Akasa FC.Six Manual Fan Controller
And a Partridge in a Pear Tree!
Silverlight Not needed for Y-tube?

Java I un-installed and Flash either
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
HP Presario CQ70
OS
windows 7 professional 64 bit
CPU
CPU Genuine Intel (R) CPU [email protected]
Motherboard
APCI x 64 - based PC
Memory
RAM 3 GB
Graphics Card(s)
Toshiba MK2555 GSX ATA
Sound Card
Conexant High Def Smart Audio 221,
Monitor(s) Displays
monitor Generic PnP.
Screen Resolution
?
Hard Drives
HDAUDIO Soft Data Fax Modern with smart CP
PSU
?
Keyboard
Standard PS/2 keyboard
Mouse
PS/2 Compatible mouse
Antivirus
Hyjackthis and Superanti spyware, Mamb Ccleaner
Browser
Google Chrome
thelma said:
Silverlight Not needed for Y-tube?

Java I un-installed and Flash either
Click to expand...

No YouTube has switched to HTML5 now. Chrome has its own sandboxed flash.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom Build
OS
Win 7 Ultimate, Win 8.1 Pro, Linux Mint 19 Cinnamon (All 64-Bit)
CPU
Intel i5 4690K
Motherboard
Gigabyte Z97X-UD3H
Memory
Corsair Vengeance LP 32GB DDR3
Graphics Card(s)
MSI GTX 1060 GAMING X 6GB
Sound Card
Onboard
Hard Drives
Samsung 850 EVO 250GB SSD (x2)
Samsung 860 EVO 1TB SSD (x2)
Crucial MX300 525GB SSD
WD Blue 2TB 5400rpm Intellipark Disabled (x2)
PSU
Corsair HX750i
Case
Phanteks Enthoo Pro
Cooling
CM Hyper 212 EVO on CPU, Noctua Redux NF-P14S 1500rpm (x6)
Keyboard
Corsair K70 RGB LUX
Mouse
Corsair Sabre RGB
Antivirus
Avast Free, MalwareBytes, SAS & CryptoPrevent
Browser
Chrome
Other Info
StarTech PEXESAT322I 2 Port PCI-E SATA Card
ASUS PCE-AC56 Dual-band AC1300 Wireless Card
Akasa FC.Six Manual Fan Controller
And a Partridge in a Pear Tree!
Than I'w get rid of it now. thanks :)
 

My Computer My Computer

Computer type
Laptop
Computer Manufacturer/Model Number
HP Presario CQ70
OS
windows 7 professional 64 bit
CPU
CPU Genuine Intel (R) CPU [email protected]
Motherboard
APCI x 64 - based PC
Memory
RAM 3 GB
Graphics Card(s)
Toshiba MK2555 GSX ATA
Sound Card
Conexant High Def Smart Audio 221,
Monitor(s) Displays
monitor Generic PnP.
Screen Resolution
?
Hard Drives
HDAUDIO Soft Data Fax Modern with smart CP
PSU
?
Keyboard
Standard PS/2 keyboard
Mouse
PS/2 Compatible mouse
Antivirus
Hyjackthis and Superanti spyware, Mamb Ccleaner
Browser
Google Chrome
Last time I tried to run Sky TV on my computer so I could watch the cricket on one screen while doing stuff on another I found that it required Silverlight. I don't know if it still does, I didn't bother to try in the end.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom build by PC Specialist
OS
Windows 7 Home Premium 64
CPU
AMD Phenom II X4 955
Motherboard
Asus M4A78T-E
Memory
8GB Corsair XMS3 DDR3
Graphics Card(s)
Gigabyte Geforce GTX 960 2GB
Sound Card
SB Audigy
Monitor(s) Displays
BenQ 24"
Screen Resolution
1920 x 1080
Hard Drives
500GB Serial ATA
PSU
1010W Quiet Quad Rail
Case
Antec 900
Cooling
Fenrir
Keyboard
Corsair
Mouse
Logitech
Internet Speed
20mbps
Antivirus
MSE plus MBAM 2.x Free
Browser
Chrome
Other Info
Second desktop different spec but similar level.
Netflix requires Silverlight unfortunately, so while I don't need it on my gaming pc, or on my work pc its a must have for my media server.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Self made custom
OS
64 bit win7 pro
CPU
AMD 8 core 8320
Motherboard
gigabyte UD3
Memory
24 GB Kingston Fury DDR3 1600
Graphics Card(s)
Gigabyte windforce R9 280X
Monitor(s) Displays
2X Asus VS228
Screen Resolution
1920 X 1080p
Hard Drives
OCZ 240GB SSD

2 X 1TB
PSU
Cooler master 750
Case
Antec
Internet Speed
Bell Aliant fiber op
Antivirus
Malwarebytes premium
Browser
Chrome
I was going to be a smart a@@ and say "This could affect 10's of people!" ;)

A Guy
 

My Computer My Computer

Computer type
PC/Desktop
OS
Windows 10 Home x64
CPU
INTEL Core i5-750 Quad-Core 3.37GHz
Motherboard
ASUS P7P55D
Memory
HyperX Fury Black Series 8GB (2 x 4GB) 1866Mhz
Graphics Card(s)
EVGA GeForce GTX 750 Superclocked 1GB 128-Bit GDDR5
Monitor(s) Displays
LG 32MA68HY 32" IPS
Screen Resolution
1920 x 1080
Hard Drives
Samsung 840 Evo 120GB, SEAGATE 500GB Barracuda® 7200.12, SATA 3 Gb/s, 7200 RPM, 16MB cache
PSU
ANTEC TruePower New TP-550, 80 PLUS, 550W
Case
ANTEC Three Hundred Illusion
Cooling
COOLER MASTER Hyper 212 Plus, 4 x 120mm 1 x 140mm Noctua's
Internet Speed
85 + Mbps
Antivirus
Avast
Browser
Vivaldi
gordoclimbs said:
Netflix requires Silverlight unfortunately, so while I don't need it on my gaming pc, or on my work pc its a must have for my media server.
Click to expand...

Since used Blu-Ray players can be had for between $30 and $40 anymore, I opted for that for Netflix over watching via PC. I did try watching through Firefox once, it wouldn't work since I don't have Silverlight, so I didn't mess with it further.
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Gateway DX4822-01
OS
Windows 7 Home Premium x64
CPU
Intel Pentium Dual Core 2.6 GHz
Motherboard
stock factory for this model
Memory
6 GB
Graphics Card(s)
stock factory for this model
Sound Card
stock factory for this model
Monitor(s) Displays
Dell P2010Ht
Screen Resolution
1600 x 900
Hard Drives
1 TB Western Digital
PSU
300 watt
Cooling
80mm case fan, CPU fan, 60mm front intake
Keyboard
Logitech
Mouse
HP 3-button optical wheel mouse
Internet Speed
fiber optic
Antivirus
MSE, SuperAntiSpyware, Malwarebytes Free

My Computer My Computer

Computer type
PC/Desktop
OS
Windows 10 Home x64
CPU
INTEL Core i5-750 Quad-Core 3.37GHz
Motherboard
ASUS P7P55D
Memory
HyperX Fury Black Series 8GB (2 x 4GB) 1866Mhz
Graphics Card(s)
EVGA GeForce GTX 750 Superclocked 1GB 128-Bit GDDR5
Monitor(s) Displays
LG 32MA68HY 32" IPS
Screen Resolution
1920 x 1080
Hard Drives
Samsung 840 Evo 120GB, SEAGATE 500GB Barracuda® 7200.12, SATA 3 Gb/s, 7200 RPM, 16MB cache
PSU
ANTEC TruePower New TP-550, 80 PLUS, 550W
Case
ANTEC Three Hundred Illusion
Cooling
COOLER MASTER Hyper 212 Plus, 4 x 120mm 1 x 140mm Noctua's
Internet Speed
85 + Mbps
Antivirus
Avast
Browser
Vivaldi
:party:
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
Custom assembled by me :}
OS
Win-7-Pro64bit 7-H-Prem-64bit
CPU
i7-5930K 2nd i9-9940x both water blocked VRM's too
Motherboard
ASUS SABERTOOTH X99 2nd ASUS x299 Apex
Memory
Trident-z 3200C14 2nd Trident-z 3600C16
Graphics Card(s)
EVGA 1080ti ftw3 2nd Titan Xp both water blocked
Sound Card
Built-in Realtek
Monitor(s) Displays
1-AOC G2460PG 24"G-Sync 144Hz/ 2nd 1-ASUS VG248QE 24" 144Hz
Screen Resolution
1920 x 1080 144Hz
Hard Drives
2-Samsung M.2 Evo & Evo Plus
2-Samsung 850 EVO 500GB SSD's/ 3-2.5 W.D. Black 1tb-&3-1tb/3-3.5 WD Black 1tb hdd's
PSU
EVGA SuperNOVA 1000-P2 2nd 1200-P2
Case
2-Corsair Obsidian Series 450D Black ATX Mid Tower
Cooling
Custom water loops
Keyboard
Logitech G710+/ 2nd Logitech G910
Mouse
2-RedDragon M901 Perdition 16400 dpi Gaming mouse = wired
Internet Speed
Comcast Ping 19ms 89.31mbps download speed 6.12mbps upload
Antivirus
Malwarebytes Pro/ Superantispyware Pro
Browser
FireFox & Pale moon
Other Info
2nd ASUS X299 Apex/Intel i9-9940x with Custom water loop/7H-Prem-x64/Corsair 450D case/Ram Trident-z 3600C16 4x8gb / Samsung970Evo plus 500gb SSD/Dual ssd EZ swap evo/PSU EVGA SuperNova 1200w-P2 80+Platinum/GPU Titan Xp /8-ML-140 on push-pull on 2-280GTX rads
Thanks Guy now I can get rid of Silverlight with confidence! Great explanation, good find!
 

My Computer My Computer

Computer type
PC/Desktop
Computer Manufacturer/Model Number
bertison
OS
Windows 7/64 HPremium.
CPU
AMD FX-6300.
Motherboard
Asus M5A78L-M LE/USB3.
Memory
Corsair (2x4) GB DDR3 CMXGX3M2A1337CL9.
Graphics Card(s)
NVidia/Gigabyte GT730 (2GB) GDDR5.
Sound Card
Onboard.
Monitor(s) Displays
Iiyama PLE2407HDS.
Screen Resolution
1920 x 1280
Hard Drives
Desktop: 1TB. WD10EZEX-00BN5A0.
Zyxel nsa310 NAS: 2TB Seagate Barracuda 7200.14.
Cache Drive: Sandisk SDSSDRC032G.
Laptop Lenovo B50/80 128 GB SSD.
PSU
Corsair 750M.
Case
Coolermaster N300.
Cooling
FRONT: (2X) 140mm. TOP: (1x) 120mm. REAR: (1x) 120mm.
Keyboard
Logitech K290
Mouse
Trust Optical Wired
Internet Speed
15 Mb Down, 0.55 Up.
Antivirus
Kaspersky Total Security 2017, Hitman Pro.
Browser
Firefox.
Other Info
NETWORK:
Sky "Q box" and router.
Desktop & NAS - 30 Metres Cat6 Ethernet wired, via TP-Link 4-port switch.
Lenovo B50/80 Laptop, 2x Wileyfox phones, Lenovo TAB3-8 tablet - all wireless.
Grandchildren, their parents and friends as bandwidth 'parasites' at various times!
You must log in or register to reply here.

Similar threads

Kaspersky Lab discovers Adobe Flash Zero Day used in the wild
Replies
3
Views
2K
ThrashZone
ThrashZone
Back
Top