CVE-2016-0185

Name of the Vulnerable Software and Affected Versions Media Center versions in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1

Description The issue allows remote attackers to execute arbitrary code via a crafted Media Center link file. This can enable an attacker to run malicious code on the system. The vulnerability can be exploited by creating a specially crafted Media Center file, which when opened, allows the attacker to execute arbitrary code.

Recommendations For Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1, consider disabling the handling of .mcl files until a patch is available to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.