MS15-100: Vulnerability in Windows Media Center Could Allow Remote Code Execution (3087918)
High Nessus Plugin ID 85884
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is affected by a remote code execution vulnerability due to a use-after-free error in Microsoft Windows Media Center when handling specially crafted Media Center link (.mcl) files.
A remote attacker can exploit this vulnerability by convincing a user to install a malicious link file, resulting in the execution of arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Windows Vista, 7, 8, and 8.1.