CVE-2017-0283 漏洞信息：Microsoft Silverlight 5 Security Update June 2017

Microsoft Silverlight is a Web browser plug-in for Windows and Mac OS X that delivers high quality video/audio, animation, and richer Website experiences in popular Web browsers.

This security update resolves a vulnerability in Microsoft Silverlight. The vulnerability could allow remote code execution if a user visits a compromised website that contains a specially crafted Silverlight application.

This security update to Silverlight includes fixes outlined in KB 4023307.

QID Detection Logic:
This authenticated QID checks if the file version of sllauncher.exe is lesser than 5.1.50907.0.

Successful exploitation could allow a remote attacker to execute arbitrary code on a targeted system.

Customers are advised to view KB4023307 for instructions pertaining to the remediation of these vulnerabilities.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

KB4023307

上一篇：Microsoft Windows Remote Code Execution - Shadow Brokers (ERRATICGOPHER) - Zero Day