Microsoft Windows Server 2012
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows Telephony Server Remote Code Execution Vulnerability
Vulnerability
A remote code execution vulnerability has been identified in the Windows Telephony Server component. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability arises from a double-free error, which can be exploited by sending a request to a malicious server that returns harmful data, potentially leading to unauthorized code execution on the user's machine.
Impact
Exploitation of this vulnerability allows for remote code execution on the affected system.
Remediation
Users can apply the security update KB5051987 to address this vulnerability. This update is available through the Microsoft Update Catalog.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
4.4remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.