Information Disclosure Flaw in Windows Media Center by Microsoft
CVE-2015-6127

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 8.1; Windows 7; Windows Vista; Windows 8
Vendor: CVE Published:; 9 December 2015

What is CVE-2015-6127?

The vulnerability in Windows Media Center allows remote attackers to exploit crafted .mcl files to read arbitrary files on the system. Affected versions include Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1. By leveraging this security issue, attackers can gain access to sensitive data, posing a significant risk to users' privacy. It is crucial for affected users to apply security updates as outlined in Microsoft's advisory to mitigate potential exploitation.

References

http://www.securityfocus.com/bid/78516

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1034335

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

74% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 9, 2015
Vulnerability Reserved
Aug 14, 2015