CVE-2016-0098

Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 allow remote attackers to execute arbitrary code via crafted media content, aka "Windows Media Parsing Remote Code Execution Vulnerability."
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

History

21 Nov 2024, 02:41

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/84089 - () http://www.securityfocus.com/bid/84089 -
References () http://www.securitytracker.com/id/1035200 - () http://www.securitytracker.com/id/1035200 -
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-027 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-027 -

Information

Published : 2016-03-09 11:59

Updated : 2024-11-21 02:41


NVD link : CVE-2016-0098

Mitre link : CVE-2016-0098

CVE.ORG link : CVE-2016-0098


JSON object : View

Products Affected

microsoft

  • windows_server_2008
  • windows_rt_8.1
  • windows_server_2012
  • windows_8.1
  • windows_7
  • windows_10
CWE
CWE-20

Improper Input Validation