Title

Microsoft Windows Media Player Network Sharing Service Remote Code Execution Vulnerability (Cat II impact)

Discussion

Check Content

See IAVM notice and vendor bulletin for additional information. Microsoft Bulletin MS10-075 (2281679). Vulnerable Applications/Systems: Windows Vista SP 1 and SP 2 (x86 and x64) Windows 7 (x86 and x64) Verify that the patch has been installed by checking that the following sample file is at the version indicated or later. See the vendor bulletin for additional information and any Vulnerable Systems\Applications not listed below. Wmpmde.dll Windows Vista SP1 11.0.6001.7009 or 7117 Windows Vista SP2 11.0.6002.18297 or 22471 Windows 7 Fixed by SP1 Windows 7 12.0.7600.16661 or 20787

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-25520

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.