This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
A multimedia application framework installed on the remote macOS or
Mac OS X host is affected by an information disclosure vulnerability.
The version of Microsoft Silverlight installed on the remote macOS or
Mac OS X host is affected by an information disclosure vulnerability
in the Graphics Device Interface (GDI) component due to improper
handling of objects in memory. A local attacker can exploit this
vulnerability, via a specially crafted application, to predict memory
offsets in a call stack and bypass the Address Space Layout
Randomization (ASLR) feature, resulting in the disclosure of memory
See also :
Microsoft has released a set of patches for Silverlight 5.
Risk factor :
Low / CVSS Base Score : 1.9
CVSS Temporal Score : 1.5
Public Exploit Available : true