Kaspersky Lab has discovered a dangerous zero-day vulnerability in Silverlight, potentially placing millions of users at risk.
In a blog post on Wednesday, the cybersecurity firm said the vulnerability would allow an attacker to gain full access to a compromised computer and execute malicious code to steal secret information, conduct surveillance and cause wholesale destruction if they so wished.
Silverlight is a web application framework developed by Microsoft for supporting and displaying information-rich content on the Web. Used by millions of PC owners worldwide across different operating systems, it is not common for security flaws in the framework to be reported -- but vulnerabilities could prove calamitous.
The vulnerability, CVE-2016-0034, was discovered after Ars Technica revealed an alleged link between exploit and surveillance tool seller Hacking Team and Vitaliy Toropov, an independent exploit-writer...