CyberSec.Space Logo
Back to CVE Browser

CVE-2016-0185

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score27.3650%
EPSS Percentile90.20th
PublishedMay 11, 2016
Last ModifiedApr 22, 2026

Vulnerability Description

Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted Media Center link (aka .mcl) file, aka "Windows Media Center Remote Code Execution Vulnerability."

Affected Platforms (CPE)

πŸ’»
Microsoft

Windows 7

All versions
πŸ’»
Microsoft

Windows 8.1

All versions
πŸ’»
Microsoft

Windows Vista

All versions

References & Advisories

πŸ”— http://www.securityfocus.com/bid/90023
πŸ”— http://www.securitytracker.com/id/1035832
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-16-277
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-059
πŸ”— https://www.exploit-db.com/exploits/39805/
πŸ”— http://www.securityfocus.com/bid/90023
πŸ”— http://www.securitytracker.com/id/1035832
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-16-277

Related Vulnerabilities

CVE-2019-568410.0

NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in DirectX drivers, in which a specially crafted shader ...

CVE-2020-079610.0

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles cer...

CVE-2019-623510.0

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12...

CVE-2020-1238810.0

The Firefox content processes did not sufficiently lockdown access control which could result in a sandbox escape. *Note: this iss...