Volerion logoVolerion
Volerion logoVolerion

Microsoft Windows Media Heap-Based Buffer Overflow Vulnerability Allowing Local Code Execution

Vulnerability

A heap-based buffer overflow vulnerability has been identified in Windows Media. This vulnerability allows an authorized attacker to execute code locally. It affects multiple Windows products, including various versions of Windows 10, Windows 11, Windows Server 2019, and Windows Server 2022. The vulnerability arises from a buffer overflow in the Windows Media component, which can be exploited by an authenticated attacker to execute arbitrary code on the affected system.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the affected system.

Remediation

Users can apply the security updates provided by Microsoft to address this vulnerability. These security updates can be downloaded via the Microsoft Update Catalog. For specific update details, refer to the Microsoft Knowledge Base articles KB5055518, KB5055519, KB5055523, KB5055526, KB5055527, KB5055528.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
7.5
exploitability
3.3
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.