PT-2016-2993 · Microsoft · Windows Server 2016+6

Published

2016-11-08

Updated

2018-10-12

CVE-2016-7217

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Media Foundation in Microsoft Windows versions prior to the fixed version

Description The issue is caused by a buffer overflow in memory operations, allowing remote attackers to execute arbitrary code via a crafted web site. This can affect the system, enabling remote attackers to execute arbitrary code.

Recommendations For Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2017-00004

CVE-2016-7217

Affected Products

Media Foundation

Windows

Windows 10

Windows 8.1

Windows Rt 8.1

Windows Server 2012

Windows Server 2016

PT-2016-2993 · Microsoft · Windows Server 2016+6

CVE-2016-7217

Weakness Enumeration

Related Identifiers

Affected Products

References · 9