Microsoft Windows Telephony Service Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the Windows Telephony Service. This issue allows an attacker to execute arbitrary code on the affected system. The vulnerability arises from a heap-based buffer overflow, which can be exploited by tricking a user into sending a request to a malicious server that returns harmful data.

Impact

Exploitation of this vulnerability could lead to unauthorized remote code execution on the affected system.

Remediation

Users can apply the security update KB5050013 for Windows 10 (32-bit), KB5050009 for Windows Server 2025, KB5050021 for Windows 11 (both ARM64 and x64-based systems), KB5049984 for Windows Server 2022 (Server Core installation), KB5049981 for Windows 10 (22H2, all architectures), KB5049983 for Windows Server 2022, KB5050008 for Windows Server 2019 (all editions), KB5050048 for Windows Server 2012 R2 (all editions), KB5050004 for Windows Server 2012 (all editions), KB5050049 for Windows Server 2008 R2 (x64, Service Pack 1, all editions), KB5050063 for Windows Server 2008 (x64, Service Pack 2, all editions) and KB5050061 for Windows Server 2008 (x64, Service Pack 2).