9.3
CVE-2015-1728
- EPSS 17.68%
- Veröffentlicht 10.06.2015 01:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Microsoft Windows Media Player 10 through 12 allows remote attackers to execute arbitrary code via a crafted DataObject on a web site, aka "Windows Media Player RCE via DataObject Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows Media Player Version10
Microsoft ≫ Windows Media Player Version10.00.00.3646
Microsoft ≫ Windows Media Player Version10.00.00.3990
Microsoft ≫ Windows Media Player Version10.00.00.4019
Microsoft ≫ Windows Media Player Version10.00.00.4036
Microsoft ≫ Windows Media Player Version11
Microsoft ≫ Windows Media Player Version11.0.5721.5145
Microsoft ≫ Windows Media Player Version11.0.5721.5230
Microsoft ≫ Windows Media Player Version11.0.6000.6324
Microsoft ≫ Windows Media Player Version12
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 17.68% | 0.968 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
http://www.securitytracker.com/id/1032522
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-057
https://www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1200