Primary

Context

Microsoft Windows Media Heap-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

A heap-based buffer overflow vulnerability has been identified in Windows Media. This vulnerability allows an unauthorized attacker to execute code remotely over a network. The issue arises when a user opens a specially crafted file, which triggers the buffer overflow and enables the execution of arbitrary code in the user's context.

Impact

Exploitation of this vulnerability could lead to remote code execution on the affected system.

Remediation

Users can apply the security update KB5058411 or KB5058497 to address this vulnerability. These updates are available through the Microsoft Update Catalog.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Windows Media Heap-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

Microsoft Windows Server

Microsoft Windows 11

Microsoft Windows 10

Microsoft Windows Server 2022

Microsoft Windows Server 2019

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating