|
Patch reliability is unclear, but widespread attacks make patching prudent. Go ahead and patch, but watch out for potential problems. |
-
Blank Inetpub folder
The other day, Microsoft created the inetpub folder in the system drive as part of a mitigation protection for CVE-2025-21204. It applies to all versions of Windows. I spotted a news article about the proof of concept with an explanation from the security researcher.
It’s an interesting read and includes some additional hardening suggestions if you think you might be at risk of attack. The research recommends:
Restrict ACLs on C:\ProgramData\Microsoft\UpdateStack
I do not see this as a risk for consumers. It’s a risk for targeted businesses. For the vast majority of patchers, merely installing the update is good enough.
It does reinforce something that my early testing did not reveal — if you accidentally remove the folder, it will be back again next month. Obviously, Microsoft wants it there for a reason.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
WuMgr not loading?
by 15 minutes ago
-
Word crashes when accessing Help
by 2 hours, 52 minutes ago
-
New Microsoft Nag — Danger! Danger! sign-in to your Microsoft Account
by 6 hours, 38 minutes ago
-
Blank Inetpub folder
by 7 hours, 29 minutes ago
-
Google : Extended Repair Program for Pixel 7a
by 9 hours, 21 minutes ago
-
Updates seem to have broken Microsoft Edge
by 13 hours, 5 minutes ago
-
Wait command?
by 2 hours, 37 minutes ago
-
Malwarebytes 5 Free version manual platform updates
by 16 hours ago
-
inetpub : Microsoft’s patch for CVE-2025–21204 introduces vulnerability
by 22 hours, 36 minutes ago
-
Windows 10 finally gets fix
by 1 day, 7 hours ago
-
AMD Ryzen™ Chipset Driver Release Notes 7.04.09.545
by 1 day, 8 hours ago
-
Win 7 MS Essentials suddenly not showing number of items scanned.
by 1 day, 3 hours ago
-
France : A law requiring messaging apps to implement a backdoor ..
by 1 day, 21 hours ago
-
Dev runs Windows 11 ARM on an iPad Air M2
by 1 day, 22 hours ago
-
MS-DEFCON 3: Cleanup time
by 17 hours, 42 minutes ago
-
KB5056686 (.NET v8.0.15) Delivered Twice in April 2025
by 3 hours, 59 minutes ago
-
How to enable Extended Security Maintenance on Ubuntu 20.04 LTS before it dies
by 2 days, 9 hours ago
-
Windows 11 Insider Preview build 26200.5562 released to DEV
by 2 days, 13 hours ago
-
Windows 11 Insider Preview build 26120.3872 (24H2) released to BETA
by 2 days, 13 hours ago
-
Unable to eject external hard drives
by 1 day ago
-
Saying goodbye to not-so-great technology
by 12 hours, 7 minutes ago
-
Tech I don’t miss, and some I do
by 10 hours, 1 minute ago
-
Synology limits hard drives
by 3 days, 18 hours ago
-
Links from Microsoft 365 and from WhatsApp not working
by 2 days, 20 hours ago
-
WhatsApp Security Advisories CVE-2025-30401
by 4 days ago
-
Upgrade Sequence
by 3 days, 17 hours ago
-
Chrome extensions with 6 million installs have hidden tracking code
by 1 day, 23 hours ago
-
Uninstall “New Outlook” before installing 2024 Home & Business?
by 2 days, 16 hours ago
-
The incredible shrinking desktop icons
by 4 days, 21 hours ago
-
Windows 11 Insider Preview Build 22635.5240 (23H2) released to BETA
by 4 days, 22 hours ago
Remembering Woody
