Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. MS15-049: Vulnerability in Silverlight could allow elevation of privilege: May 12, 2015

MS15-049: Vulnerability in Silverlight could allow elevation of privilege: May 12, 2015

View products that this article applies to.

Summary

This security update resolves a vulnerability in Microsoft Silverlight. The vulnerability could allow elevation of privilege if a specially crafted Silverlight application is run on an affected system. To exploit the vulnerability, an attacker would first have to log on to the system or convince a user who is logged on to execute the specially crafted application.

↑ Back to the top

Introduction

Microsoft has released security bulletin MS15-049. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

↑ Back to the top

More Information

Security update deployment information

Silverlight 5 for Mac (all editions)

Reference Table

The following table contains the security update information for this software.
Security update file namesFor Microsoft Silverlight 5 when installed on Mac:
Silverlight.dmg

For Microsoft Silverlight 5 Developer Runtime when installed on Mac:
silverlight_developer.dmg
Restart requirementThis update does not require a restart.
Removal informationOpen the Finder, select the system drive, open the Internet Plug-ins - Library folder, and delete the file that is named "Silverlight.Plugin." (Be aware that the update cannot be removed without removing the Silverlight plug-in.)
File informationSee the file information section.
Installation verificationSee the Update FAQ section in Security bulletin MS15-049 that addresses the question, "How do I know which version and build of Microsoft Silverlight is currently installed?"

Silverlight 5 for Windows (all supported releases)

Reference Table

The following table contains the security update information for this software.
Security update file namesFor Microsoft Silverlight 5 when installed on all supported 32-bit releases of Microsoft Windows:
silverlight.exe

For Microsoft Silverlight 5 Developer Runtime when installed on all supported 32-bit releases of Microsoft Windows:
silverlight_developer.exe

For Microsoft Silverlight 5 when installed on all supported 64-bit releases of Microsoft Windows:
silverlight_x64.exe

For Microsoft Silverlight 5 Developer Runtime when installed on all supported 64-bit releases of Microsoft Windows:
silverlight_developer_x64.exe
Installation switchesSee the Silverlight Enterprise Deployment Guide
Restart requirementThis update does not require a restart.
Removal informationUse Add or Remove Programs item in Control Panel. (Be aware that the update cannot be removed without removing Silverlight.)
File informationSee the file information section.
Registry key verificationFor 32-bit installations of Microsoft Silverlight 5:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Silverlight "Version" = "5.1.40416.0"

For 64-bit installations of Microsoft Silverlight 5:
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Silverlight "Version" = "5.1.40416.0"and
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Silverlight "Version" = "5.1.40416.0"

↑ Back to the top

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.


Silverlight file information

For all supported 64-bit releases of Microsoft Silverlight 5 for Windows

File nameFile versionFile sizeDateTimePlatform
Silverlight_developer_x64.exe5.1.40416.017,876,25616-Apr-201510:31x86
Silverlight_x64.exe5.1.40416.013,095,13616-Apr-201510:07x86

For all supported 32-bit versions of Microsoft Silverlight 5 for Windows

File nameFile versionFile sizeDateTimePlatform
Silverlight.exe5.1.40416.06,962,91216-Apr-201509:14x86
Silverlight_developer.exe5.1.40416.09,355,55216-Apr-201509:40x86

For all supported versions of Microsoft Silverlight 5 for Macintosh

File nameFile versionFile sizeDateTimePlatform
Silverlight.dmgNot Applicable15,241,38720-Apr-201522:03Not Applicable
Silverlight_developer.dmgNot Applicable20,902,42020-Apr-201522:03Not Applicable
File hash information
File nameSHA1 hashSHA256 hash
Silverlight.dmg6AA77FFE208D6EC38FCD8F20C2C8E24BDF1A3F9703486C647182E33241A942A56E9DCD283C528A641CC0913FAB4CE194012A60B1
Silverlight.exe5E77FD1CD6EBCC223B0BA9D6AAB9E8F2C309393784B5FCFAB16A8F276E314F6A8077BFA0E0E15DAB09B292445427A98CD42E4509
Silverlight_Developer.dmgAA44336CAE8BA2F518EDD2A9A9DAE419EE2DBCB4F7ABEFBEC44467897894FCF8A6A088842827D6CCD20DFD142DC2D36A4CE606A1
Silverlight_Developer.exe88504FB3CABAEC6E994635C095BB4ADB928356941BA3FB451A8D6BB85553D84376CA13661B8DB41B2AE2DB3E8B0AE632A8E64258
Silverlight_Developer_x64.exe7EB10A6A8FB9CADBD221986E3044CCE4C88D9EEA05166B734A1B29C07615AB54783D712E1384D3D37927F671B269228193CD3D1E
Silverlight_x64.exe2F3040E5F7028C2D42CFF848F361C06F3D237376A3F8A7345737CEE988C52B912742E0E3AD2CB3B2676E7313B83F18878CAFB0B6

↑ Back to the top

Keywords: kbsurveynew, kbsecvulnerability, kbsecurity, kbsecreview, kbsecbulletin, kbfix, kblangall, kb, kbexpertiseinter, kbbug, atdownload, kbmustloc

↑ Back to the top

Article Info
Article ID : 3058985
Revision : 1
Created on : 1/7/2017
Published on : 5/12/2015
Exists online : False
Views : 500