MS17-020: Security Update for Windows DVD Maker (3208223)
Medium Nessus Plugin ID 97734
SynopsisThe remote Windows host is affected by an information disclosure vulnerability.
DescriptionThe remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability in Windows DVD Maker due to improper parsing of .msdvd files. An unauthenticated, remote attacker can exploit this issue, by convincing a user to execute a specially crafted application, to disclose sensitive information.
SolutionMicrosoft has released a set of patches for Windows Vista and 7.