I have a quick question regarding the obsolete version of Microsoft Silverlight finding. Does anyone know how the scan engine detects if Silverlight is installed on the target system? In the proof section, there is only this information: Vulnerable software installed: Microsoft Silverlight 5.1.50918.0
This is not very helpful, especially when I create an assignment (ticket) to the system owner for remediation, and they tell me that there is no Silverlight installed on the target system.
Hi @kevin_mccabe
Thank you for your response. My colleagues did not find any Silverlight registry keys. However, I have send them the following Guide from Microsoft to clean corrupted Silverlight installations. Maybe this helps to get rid of this finding. Clean Corrupted Silverlight Installations
I will update this case as soon as I received any feedback.
This is also my problem, The rapid7 support cant find anything on their end. They recommend a 3rd party application which is the registry cleaner. I am not entirely sure why they recommend a not legitimate 3rd party application to install on the server but I I did not allow to do that.
Hello everyone,
our IT has managed to get rid of the Silverlight installation by using the guide from Microsoft which I posted in my answer to @kevin_mccabe.