Microsoft Security Advisory (2506014)

This update was part of the Windows Update pack this month, but I'm curious, is this to patch out the exploit discovered a few months back regarding bypassing Kernel Patch Protection?

 

From http://blogs.technet.com/b/srd/arch...g-the-risk-of-the-april-security-updates.aspx:

 

Awesome news, thanks. KPP returns to having no known loopholes then.

 

I might be misunderstanding something here, but what I can't grasp is why this hasn't appeared for me via Windows Update, and also if it may be necessary to
install it manually on 32bit OS, then how is user supposed to know of the updates existance/availability? I'm on W7 32bit with WU autoupdate enabled.
Is KB rated critical? Thanks.
Saw this at Softpedia:
http://news.softpedia.com/news/Microsoft-Patch-Disables-TDL4-Rootkit-on-64-Bit-Windows-195418.shtml

 

Sorry, what I'm understanding is that MS don't rate 32bit as affected, so what's the best course of action?

 

32bit Windows doesn't have Kernel Patch Protection so is far more vulnerable. This was patching a flaw in KPP.

 

Thanks, it's just from what I'm seeing on Softpedia seems to say that 32bit users can benefit from manually installing, yet it can't be available
I must be getting that bit wrong or something, thanks a lot.

 

As far as it explains the patch isn't directly for KPP, it simply removes the functionality that was being abused by the rootkit to get past KPP.

So technically 32bit users could get the patch but it wouldn't actually do anything for you.

 

Many thanks elapsed, now it's perfectly clear. Think copy of that article is
a little ambiguous, since it got me thinking that I could enhance protection by
manually installing,,,and you know(probably) how paranoid I can be!!