CVE-2015-1179 is a vulnerability that was discovered in March 2015, affecting the Microsoft Windows operating system. This vulnerability allows an attacker to execute arbitrary code with elevated privileges, potentially leading to a full compromise of the affected system. The vulnerability exists due to a flaw in the way the operating system handles objects in memory.
An attacker can exploit this vulnerability by persuading a user to open a specially crafted file or visit a malicious webpage. Once the user opens the file or visits the webpage, the attacker can execute commands with elevated privileges, allowing them to take control of the affected system. This vulnerability affects all versions of the Windows operating system prior to Windows 10 and Server 2016.
Microsoft released a patch for CVE-2015-1179 in April 2015, which addressed the issue by correcting the way the operating system handles objects in memory. Users who have not applied the patch are at risk of having their systems compromised. It is highly recommended that users apply the patch as soon as possible to avoid being affected by this vulnerability.