Windows Media Center
by Microsoft
CVEs (10)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-0185 | Hig | 0.71 | 7.8 | 0.70 | KEV | May 11, 2016 | Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted Media Center link (aka .mcl) file, aka "Windows Media Center Remote Code Execution Vulnerability." | |
| CVE-2011-0042 | Hig | 0.53 | 7.8 | 0.33 | Mar 9, 2011 | SBE.dll in the Stream Buffer Engine in Windows Media Player and Windows Media Center in Microsoft Windows XP SP2 and SP3, Windows XP Media Center Edition 2005 SP3, Windows Vista SP1 and SP2, Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista does not… | ||
| CVE-2015-2509 | 0.09 | — | 0.71 | Sep 9, 2015 | Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted Media Center link (mcl) file, aka "Windows Media Center RCE Vulnerability." | |||
| CVE-2015-6127 | 0.07 | — | 0.46 | Dec 9, 2015 | Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows remote attackers to read arbitrary files via a crafted .mcl file, aka "Windows Media Center Information Disclosure Vulnerability." | |||
| CVE-2015-6131 | 0.05 | — | 0.31 | Dec 9, 2015 | Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted .mcl file, aka "Media Center Library Parsing RCE Vulnerability." | |||
| CVE-2014-4060 | 0.02 | — | 0.23 | Aug 12, 2014 | Use-after-free vulnerability in MCPlayer.dll in Microsoft Windows Media Center TV Pack for Windows Vista, Windows 7 SP1, and Windows Media Center for Windows 8 and 8.1 allows remote attackers to execute arbitrary code via a crafted Office document that triggers deletion of a… | |||
| CVE-2022-30135 | 0.00 | — | 0.01 | Jun 15, 2022 | Windows Media Center Elevation of Privilege Vulnerability | |||
| CVE-2022-21973 | 0.00 | — | 0.01 | Mar 9, 2022 | Windows Media Center Update Denial of Service Vulnerability | |||
| CVE-2021-40441 | 0.00 | — | 0.01 | Dec 15, 2021 | Windows Media Center Elevation of Privilege Vulnerability | |||
| CVE-2011-2009 | 0.00 | — | 0.06 | Oct 12, 2011 | Untrusted search path vulnerability in Windows Media Center in Microsoft Windows Vista SP2 and Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista, allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Media… |
- risk 0.71cvss 7.8epss 0.70
Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted Media Center link (aka .mcl) file, aka "Windows Media Center Remote Code Execution Vulnerability."
- risk 0.53cvss 7.8epss 0.33
SBE.dll in the Stream Buffer Engine in Windows Media Player and Windows Media Center in Microsoft Windows XP SP2 and SP3, Windows XP Media Center Edition 2005 SP3, Windows Vista SP1 and SP2, Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista does not…
- CVE-2015-2509Sep 9, 2015risk 0.09cvss —epss 0.71
Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted Media Center link (mcl) file, aka "Windows Media Center RCE Vulnerability."
- CVE-2015-6127Dec 9, 2015risk 0.07cvss —epss 0.46
Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows remote attackers to read arbitrary files via a crafted .mcl file, aka "Windows Media Center Information Disclosure Vulnerability."
- CVE-2015-6131Dec 9, 2015risk 0.05cvss —epss 0.31
Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted .mcl file, aka "Media Center Library Parsing RCE Vulnerability."
- CVE-2014-4060Aug 12, 2014risk 0.02cvss —epss 0.23
Use-after-free vulnerability in MCPlayer.dll in Microsoft Windows Media Center TV Pack for Windows Vista, Windows 7 SP1, and Windows Media Center for Windows 8 and 8.1 allows remote attackers to execute arbitrary code via a crafted Office document that triggers deletion of a…
- CVE-2022-30135Jun 15, 2022risk 0.00cvss —epss 0.01
Windows Media Center Elevation of Privilege Vulnerability
- CVE-2022-21973Mar 9, 2022risk 0.00cvss —epss 0.01
Windows Media Center Update Denial of Service Vulnerability
- CVE-2021-40441Dec 15, 2021risk 0.00cvss —epss 0.01
Windows Media Center Elevation of Privilege Vulnerability
- CVE-2011-2009Oct 12, 2011risk 0.00cvss —epss 0.06
Untrusted search path vulnerability in Windows Media Center in Microsoft Windows Vista SP2 and Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista, allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Media…