Home / bulletins MS10-075 - Critical: Vulnerability in Media Player Network Sharing Service Could Allow Remote Code Execution (2281679) - Version:1.0
Posted on 12 October 2010
CriticalSeverity Rating: Critical - Revision Note: V1.0 (October 12, 2010): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the Microsoft Windows Media Player Network Sharing Service. The vulnerability could allow remote code execution if an attacker sent a specially crafted RTSP packet to an affected system. However, Internet access to home media is disabled by default. In this default configuration, the vulnerability can be exploited only by an attacker within the same subnet.