Vulnerability Details : CVE-2015-2509
Public exploit exists!
Windows Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8, and Windows 8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted Media Center link (mcl) file, aka "Windows Media Center RCE Vulnerability."
Vulnerability category: Execute codeBypassGain privilege
Exploit prediction scoring system (EPSS) score for CVE-2015-2509
Probability of exploitation activity in the next 30 days: 97.35%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2015-2509
-
MS15-100 Microsoft Windows Media Center MCL Vulnerability
Disclosure Date: 2015-09-08First seen: 2020-04-26exploit/windows/fileformat/ms15_100_mcl_exeThis module exploits a vulnerability in Windows Media Center. By supplying an UNC path in the *.mcl file, a remote file will be automatically downloaded, which can result in arbitrary code execution. Authors: - sinn3r <sinn3r@metasploit.com>
CVSS scores for CVE-2015-2509
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
CWE ids for CVE-2015-2509
-
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-2509
-
https://www.exploit-db.com/exploits/38195/
Microsoft Windows Media Center - MCL (MS15-100) (Metasploit)Exploit;Third Party Advisory;VDB Entry
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-100
Microsoft Security Bulletin MS15-100 - Important | Microsoft DocsPatch;Vendor Advisory
-
http://www.rapid7.com/db/modules/exploit/windows/fileformat/ms15_100_mcl_exe
MS15-100 Microsoft Windows Media Center MCL VulnerabilityThird Party Advisory
-
http://www.securitytracker.com/id/1033499
Windows Media Center File Processing Flaw Lets Remote Users Execute Arbitrary Code - SecurityTrackerThird Party Advisory;VDB Entry
-
https://www.exploit-db.com/exploits/38151/
Microsoft Windows Media Center - Command Execution (MS15-100)Third Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/76594
Microsoft Windows Media Center CVE-2015-2509 Remote Code Execution VulnerabilityThird Party Advisory;VDB Entry
Products affected by CVE-2015-2509
- cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*