Microsoft Windows Media Center .MCL File Processing Remote Code Execution (MS16-059)

Microsoft Windows Media Center (all versions prior to May 11th, 2016) contains a remote code execution upon processing specially crafted .MCL files. The vulnerability exists because Windows Media Center does not correctly processes paths in the "Run" parameter of the "Application" tag, bypassing the usual security warning displayed upon trying to run programs residing on remote (WebDAV/SMB) shares.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2016-0185
Product Version: 
2016_R1
Released Date: 
Friday, May 13, 2016 - 00:00