Unrated severityNVD Advisory· Published May 3, 2011· Updated Apr 29, 2026

CVE-2011-1845

Description

Multiple memory leaks in the DataGrid control implementation in Microsoft Silverlight 4 before 4.0.60310.0 allow remote attackers to cause a denial of service (memory consumption) via an application involving (1) subscriptions to an INotifyDataErrorInfo.ErrorsChanged event or (2) a TextBlock or TextBox element.

Affected products

Microsoft/Silverlight7 versions
cpe:2.3:a:microsoft:silverlight:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:microsoft:silverlight:*:*:*:*:*:*:*:*range: <=4.0.60129.0
- cpe:2.3:a:microsoft:silverlight:2.0.31005.00:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:silverlight:2.0.40115.00:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:silverlight:3.0.40624.00:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:silverlight:3.0.40723.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:silverlight:3.0.40818.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:silverlight:3.0.50106.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

isc.sans.edu/diary.htmlnvdPatch
support.microsoft.com/kb/2526954nvdPatch

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.016
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000