Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:4CA1F529427C102E6F0EC6756A18AFB9
HistorySep 15, 2015 - 12:00 a.m.

Windows Media Center command execution

2015-09-1500:00:00
SAINT Corporation
download.saintcorporation.com
23

EPSS

0.974

Percentile

99.9%

JSON

Added: 09/15/2015
CVE: CVE-2015-2509

Background

Windows Media Center is software for watching DVDs and TV channels on Windows systems.

Problem

A vulnerability in Windows Media Center could allow command execution when a user opens an **.mcl** file which references an executable file supplied by an attacker.

Resolution

Apply the update referenced in Microsoft Security Bulletin MS15-100.

References

<https://technet.microsoft.com/library/security/ms15-100&gt;

Limitations

Exploit works on Microsoft Windows Vista through 8.1.

One of the programs **smbclient** or **mount_smbfs** must be available on the SAINT host.

An SMB share which is anonymously readable by the target computer, and a user name and password with write access to that share, must be specified.

The vulnerable user must save the **.mcl** file via right-click menu. The vulnerability is triggered when the file is opened by Windows Media Center.

Platforms

Windows

Related

checkpoint_advisories 1
saint 3
metasploit 1
zdt 2
cvelist 1
nvd 1
exploitdb 2
canvas 1
seebug 1
openvas 1
prion 1
kaspersky 2
cve 1
nessus 1
symantec 1
packetstorm 1
securityvulns 1
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Media Center Remote Code Execution (MS15-100: CVE-2015-2509)
2015-09-08 00:00:00
saint
saint
Windows Media Center command execution
2015-09-15 00:00:00
Windows Media Center command execution
2015-09-15 00:00:00
Windows Media Center command execution
2015-09-15 00:00:00
metasploit
metasploit
MS15-100 Microsoft Windows Media Center MCL Vulnerability
2015-09-11 20:05:06
zdt
zdt
Windows Media Center - Command Execution (MS15-100) Vulnerability
2015-09-12 00:00:00
Microsoft Windows Media Center MCL MS15-100 Vulnerability
2015-09-16 00:00:00
cvelist
cvelist
CVE-2015-2509
2015-09-09 00:00:00
nvd
nvd
CVE-2015-2509
2015-09-09 00:59:22
exploitdb
exploitdb
Microsoft Windows Media Center - Command Execution (MS15-100)
2015-09-11 00:00:00
Microsoft Windows Media Center - MCL (MS15-100) (Metasploit)
2015-09-15 00:00:00
canvas
canvas
Immunity Canvas: MS15_100
2015-09-09 00:59:00
seebug
seebug
MS15-100 Microsoft Windows Media Center MCL Vulnerability
2015-09-17 00:00:00
openvas
openvas
Microsoft Windows Media Center Remote Code Execution Vulnerability (3087918)
2015-09-09 00:00:00
prion
prion
Design/Logic Flaw
2015-09-09 00:59:00
kaspersky
kaspersky
KLA10660Code execution vulnerability in Microsoft Windows Media Center
2015-09-08 00:00:00
KLA10656 Multiple vulnerabilities in Microsoft Windows
2015-09-08 00:00:00
cve
cve
CVE-2015-2509
2015-09-09 00:59:22
nessus
nessus
MS15-100: Vulnerability in Windows Media Center Could Allow Remote Code Execution (3087918)
2015-09-10 00:00:00
symantec
symantec
Microsoft Windows Media Center CVE-2015-2509 Remote Code Execution Vulnerability
2015-09-08 00:00:00
packetstorm
packetstorm
MS15-100 Microsoft Windows Media Center MCL Code Execution
2015-09-15 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-09-15 00:00:00

EPSS

0.974

Percentile

99.9%

JSON
Related for SAINT:4CA1F529427C102E6F0EC6756A18AFB9
checkpoint_advisories1saint3metasploit1zdt2cvelist1nvd1exploitdb2canvas1seebug1openvas1prion1kaspersky2cve1nessus1symantec1packetstorm1securityvulns1