News Targeted


Category: Microsoft|Jan 15, 2022 | Author: Admin

Microsoft refuses to correct the error - took matters into its own hands

Share on

Neowin reports that the 0-Day error dubbed "RemotePotato0" has now been fixed, but that Microsoft is not behind it. They refuse to close the security hole, which has resulted in someone releasing an unofficial fix.

Was warned in April


The hole is a so-called "0-Day" error that the company has acknowledged but has not received any attention from them beyond this, so it has not received as much as a CVE ID that is normal for such errors. It was only SentinelOne researchers who discovered the error, which they quickly reported to Microsoft in April 2021.

 

The founder of 0patch, Mitja Kolsek, has on her blog described the problem in addition to sharing an unofficial fix that closes the hole. The entire post can be read here.

 

 

Provides administrator privileges


The way "RemotePotato0" works is that it allows unauthorized people to send out authenticated RPC / DCOM commands.

 

When these are fulfilled, they get more privileges on the domain that is the target of the attack, so they get administrator rights. The hole is described as particularly dangerous as it does not require interaction from the target.

 

Outdated authentication protocols in Windows NT LAN Manager (NTLM) are exploited and make this a vulnerability. Being outdated is probably also why Microsoft does not pay attention to it - they only recommend disabling NTLM or configuring Windows servers to block NTLM-related attacks.

Sources: Neowin

Sponsored Ads:

Comments:

< Next article

Previous article >


Can force Facebook to allow it

Category: IT|May 5, 2024 | Author: Admin

Siri can no longer tell the clock

Category: Apple|May 4, 2024 | Author: Admin

Struggling with VPN

Category: Microsoft|May 3, 2024 | Author: Admin

This is how Huawei tricked its way into the US

Category: IT|May 2, 2024 | Author: Admin

Edge 125 arrives in Beta with sleeping tab improvements and other changes

Category: IT|May 1, 2024 | Author: Admin

Now the iPad opens

Category: Apple|Apr 30, 2024 | Author: Admin

Woke up locked out of Apple ID on iPhone

Category: Apple|Apr 29, 2024 | Author: Admin

Google has a hidden collection of highly-addictive retro games

Category: Google|Apr 28, 2024 | Author: Admin

Google is officially a $2 trillion company

Category: Google|Apr 27, 2024 | Author: Admin

Snowden: “DO NOT use Reddit!”

Category: IT|Apr 26, 2024 | Author: Admin

Popular Google app used by millions set to close in a few weeks

Category: Google|Apr 25, 2024 | Author: Admin

Cheeky, YouTube!

Category: Google|Apr 24, 2024 | Author: Admin

This is the date Apple will reveal new iPads

Category: Apple|Apr 23, 2024 | Author: Admin

Only possible with VPN

Category: IT|Apr 22, 2024 | Author: Admin

Apple sidles into sideloading in the EU

Category: Apple|Apr 21, 2024 | Author: Admin
more