| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS16-131 | Security Update for Microsoft Video Control (3199151) | WindowsVistax64EditionServicePack2 | Critical | 09-11-2016 |
Technical Information
Brief overview of the risk:
This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution when Microsoft Video Control fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Detailed Information on the risk:
A remote code execution vulnerability exists when Microsoft Video Control fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. To exploit the vulnerability, an attacker would have to convince a user to open either a specially crafted file or application from either a webpage or an email message.Further information on this exploit is available at : MS16-131
Affected Software
WindowsVistax64EditionServicePack2WindowsVistaServicePack2
Windows8.1forx64-basedSystems
Windows8.1for32-bitSystems
Windows7forx64-basedSystemsServicePack1
Windows7for32-bitSystemsServicePack1
Windows10Version1607forx64-basedSystems
Windows10Version1607for32-bitSystems
Windows10Version1511forx64-basedSystems
Windows10Version1511for32-bitSystems
Windows10forx64-basedSystems
Windows10for32-bitSystems