CVE-2016-0185 : Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allo

Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers to execute arbitrary code via a crafted Media Center link (aka .mcl) file, aka "Windows Media Center Remote Code Execution Vulnerability."

Published 2016-05-11 01:59:26

Updated 2025-04-12 10:46:41

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2016-0185

Microsoft » Windows Vista » Version: N/A Update SP2
cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows 7 » Version: N/A Update SP1
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows 8.1 » Version: N/A
cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
Matching versions

CVE-2016-0185 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Microsoft Windows Media Center Remote Code Execution Vulnerability

CISA required action:

Apply updates per vendor instructions.

CISA description:

Microsoft Windows Media Center contains a remote code execution vulnerability when Windows Media Center opens a specially crafted Media Center link (.mcl) file that references malicious code.

Notes:

https://nvd.nist.gov/vuln/detail/CVE-2016-0185

Added on 2021-11-03 Action due date 2022-05-03

Exploit prediction scoring system (EPSS) score for CVE-2016-0185

EPSS FAQ

82.75%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 99 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2016-0185

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
7.8	HIGH	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	1.8	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-10
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H	1.8	5.9	NIST	2024-07-24
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: High Integrity: High Availability: High

References for CVE-2016-0185

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-059

Microsoft Security Bulletin MS16-059 - Important | Microsoft Docs
Patch;Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-16-277

ZDI-16-277 | Zero Day Initiative
Third Party Advisory;VDB Entry
http://www.securitytracker.com/id/1035832

Windows Media Center '.mcl' Link File Processing Flaw Lets Remote Users Execute Arbitrary Code - SecurityTracker
Broken Link;Third Party Advisory;VDB Entry
https://www.exploit-db.com/exploits/39805/

Microsoft Windows Media Center - '.MCL' File Processing Remote Code Execution (MS16-059)
Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/90023

Microsoft Windows Media Center CVE-2016-0185 Remote Code Execution Vulnerability
Broken Link;Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2016-0185

Products affected by CVE-2016-0185

CVE-2016-0185 is in the CISA Known Exploited Vulnerabilities Catalog

Exploit prediction scoring system (EPSS) score for CVE-2016-0185

CVSS scores for CVE-2016-0185

References for CVE-2016-0185