Windows Media Center "ehshell.exe" is vulnerable to an XML External Entity attack allowing remote access to any files on a victim's computer, if they open an XXE laden ".mcl" file via a remote share / USB or from a malicious "windowsmediacenterweb" web link.
81e84ff41d9a618b2336f2ca0312747ef692c4d8fc01abf21b4615f4a4bd02b8