CVE-2013-3178

Microsoft Silverlight 5 before 5.1.20513.0 does not properly initialize arrays, which allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via a crafted Silverlight application, aka "Null Pointer Vulnerability."

Date published : 2013-07-09

http://www.us-cert.gov/ncas/alerts/TA13-190A

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-052