CVE-2020-1579

Name of the Vulnerable Software and Affected Versions: Windows (affected versions not specified)

Description: The issue exists due to improper handling of memory objects by the Windows Function Discovery SSDP Provider, which is part of the Windows operating system. This can be exploited by an attacker to elevate their privileges on the system. To exploit this, an attacker would first need to gain execution on the victim system and then run a specially crafted application. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations: To resolve the issue, apply the security update that corrects how the Windows Function Discovery SSDP Provider handles memory. At the moment, there is no information about a newer version that contains a fix for this vulnerability.