MS15-001 - Vulnerability in Windows Application Compatibility Cache Could Allow Elevation of Privilege

Bulletin ID: 

MS15-001

Severity: 

Important

Description: 

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An authenticated attacker who successfully exploited this vulnerability could bypass existing permission checks that are performed during cache modification in the Microsoft Windows Application Compatibility component and execute arbitrary code with elevated privileges.

Security advisory: 

Related content