Category: Microsoft|Jan 15, 2022 | Author: Admin

Microsoft refuses to correct the error - took matters into its own hands

Share on

Neowin reports that the 0-Day error dubbed "RemotePotato0" has now been fixed, but that Microsoft is not behind it. They refuse to close the security hole, which has resulted in someone releasing an unofficial fix.

Was warned in April


The hole is a so-called "0-Day" error that the company has acknowledged but has not received any attention from them beyond this, so it has not received as much as a CVE ID that is normal for such errors. It was only SentinelOne researchers who discovered the error, which they quickly reported to Microsoft in April 2021.

 

The founder of 0patch, Mitja Kolsek, has on her blog described the problem in addition to sharing an unofficial fix that closes the hole. The entire post can be read here.

 

 

Provides administrator privileges


The way "RemotePotato0" works is that it allows unauthorized people to send out authenticated RPC / DCOM commands.

 

When these are fulfilled, they get more privileges on the domain that is the target of the attack, so they get administrator rights. The hole is described as particularly dangerous as it does not require interaction from the target.

 

Outdated authentication protocols in Windows NT LAN Manager (NTLM) are exploited and make this a vulnerability. Being outdated is probably also why Microsoft does not pay attention to it - they only recommend disabling NTLM or configuring Windows servers to block NTLM-related attacks.

Sources: Neowin

Sponsored Ads:

Comments:


New Windows 11 test hides something Microsoft has not touched in decades

Category: Microsoft|Jan 23, 2022 | Author: Admin

MediaTek shows the world’s first live demos of Wi-Fi 7 technology

Category: IT|Jan 22, 2022 | Author: Admin

iOS 15-hole leaked private Apple ID data to third-party apps

Category: Apple|Jan 21, 2022 | Author: Admin

Had to crisis-postpone new 5G standard in the US to avoid plane chaos

Category: IT|Jan 20, 2022 | Author: Admin

No one found out that the iPhone 13 is missing this until now

Category: Apple|Jan 19, 2022 | Author: Admin

Safari leaks your browser history

Category: General|Jan 18, 2022 | Author: Admin

Chromium Trouble - Can't change default search engine anymore

Category: Google|Jan 17, 2022 | Author: Admin

Here, developers are allowed by Apple to offer alternative payment methods

Category: Apple|Jan 16, 2022 | Author: Admin

Microsoft refuses to correct the error - took matters into its own hands

Category: Microsoft|Jan 15, 2022 | Author: Admin

Now Meta gets the authorities on its neck, again

Category: General|Jan 14, 2022 | Author: Admin

Has invested heavily in podcasts - now Spotify is closing down the studio

Category: General|Jan 13, 2022 | Author: Admin

Claims HomePod mini is on its way to Norway

Category: General|Jan 12, 2022 | Author: Admin

Linux gets the function everyone wants

Category: IT|Jan 11, 2022 | Author: Admin

Flasher RTX 3080 Ti with 3090 BIOS for extra efficient Ethereum mining

Category: General|Jan 10, 2022 | Author: Admin

Dice continues to destroy for himself: removed favorite from Battlefield 2042

Category: General|Jan 9, 2022 | Author: Admin
more