CVE-2018-8481

Name of the Vulnerable Software and Affected Versions Windows Media Player versions prior to the fixed version Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2019 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers

Description The issue is related to the improper disclosure of file information by Windows Media Player, allowing a remote attacker to determine the presence of files on a disk using a specially crafted hyperlink. This can lead to the exposure of sensitive information.

Recommendations For Windows Media Player, update to a version that includes the fix for this issue. For Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers, apply the recommended patch or update to prevent exploitation. As a temporary workaround, consider restricting access to Windows Media Player until a patch is available.