MS16-131: Security Update for Microsoft Video Control (3199151)
High Nessus Plugin ID 94632
SynopsisThe remote host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is missing a security update. It is, therefore, affected by a remote code execution vulnerability in Microsoft Video Control due to improper handling of objects in memory.
An unauthenticated, remote attacker can exploit this vulnerability by convincing a user to open a specially crafted file from a web page or email message, resulting in the execution of arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Windows Vista, 7, 8.1, RT 8.1, and 10.