Microsoft Windows Server 2016
Moderate fix1 remedy
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*
Moderate fix1 remedy
Microsoft Windows Media Heap-Based Buffer Overflow Vulnerability Allowing Remote Code Execution
Vulnerability
A heap-based buffer overflow vulnerability has been identified in Windows Media. This vulnerability allows an unauthorized attacker to execute code on a vulnerable system over an adjacent network. The issue arises when a user initiates a connection to a device projecting via Miracast, creating an opportunity for exploitation.
Impact
Exploitation of this vulnerability could lead to unauthorized remote code execution on the affected system.
Reproduction
To reproduce this vulnerability, a user must connect to a vulnerable system on the same wireless network that is configured to allow 'Projecting to this PC' and marked as 'Available Everywhere'. This is not the default configuration. Once these conditions are met, an unauthorized attacker could exploit the vulnerability by executing code on the affected system.
Remediation
Users can apply the security updates provided by Microsoft to address this vulnerability. These security updates can be downloaded via the Microsoft Update Catalog.
Added: Jul 8, 2025, 7:56 PM
Updated: Jul 8, 2025, 7:56 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
4.8remediation
7.7relevance
0.2threat
1.6urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.