0patch

Discussion in 'other security issues & news' started by Rafales, Jun 7, 2016.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    No Source Code For a 14-Year Old Vulnerable DLL? No Problem. (CVE-2018-20250)
    https://blog.0patch.com/2019/02/no-source-code-for-14-year-old.html
     
  2. guest

    guest Guest

    ACROS Security Launches 0patch PRO
    April 2, 2019
    https://www.securityweek.com/acros-security-launches-0patch-pro
     
  3. guest

    guest Guest

    Unofficial Patch Released for Java Flaws Found by Google Researcher
    April 5, 2019
    https://www.securityweek.com/unofficial-patch-released-java-flaws-found-google-researcher
     
  4. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    0Patch is currently patching "No CVE Microsoft Internet Explorer Missing Error Check on Reading Mark-Of-The-Web" when several of my programs run on my Win10 x64 1809 machine. :thumb:

    https://0patch.com/patches.html

    I can't see a reason not to use this program, at least the free version anyway. If I had a Win7 machine I may even consider the Pro version after January 2020.
     
  5. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    8,625
    Location:
    USA
    I find it ridiculous that you cannot change the default handler for this file type. At least not through the standard UI. You would think Edge would be an option, not IE only.
     
  6. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    5,507
    Agreed. I am currently using the free version myself.
     
  7. guest

    guest Guest

    Microsoft Edge Uses a Secret Trick And Breaks Internet Explorer's Security
    April 17, 2019
    https://blog.0patch.com/2019/04/microsoft-edge-uses-secret-trick-and.html
     
  8. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Also from above 0patch article and for clarification as I posted in the other Wilder's thread on this issue:
    In other words if you never use Edge, you don't have to worry about IE11 or other software exploiting. As the 0patch article mentions, IE11 is not the only software affected by this vulnerability.

    -EDIT- Also this is notable:
    Which means Edge is really the vulnerable browser here.
     
    Last edited: Apr 18, 2019
  9. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    2,469
    Location:
    Hollow Earth - Telos
    Woody posted a Tweet today that showed how a Win 7 person like me can easily Block the MHT files at the core of the problem.
     
  10. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    Last edited: Apr 18, 2019
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    Windows 7 isn't affected as it involves Edge browser, so I wouldn't worry about it on Win7.
     
  12. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    I installed the latest 0patch on Windows 10 Home (i3-6100U, 4 GB RAM), but it caused the computer to slow down drastically at reboot and start-up, so I uninstalled it. (It only found code for 2 processes, one of which I don't use.)
     
  13. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    I never noticed that on my Win10 x64 1809 machines.
     
  14. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    Last edited: Apr 20, 2019
  15. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    I ended up having to reinstall Windows because it kept crashing on startup, and System Restore wouldn't complete, even from Safe Mode. I can't say for certain if this was caused by 0patch, but I don't plan to try it again :(
     
  16. guest

    guest Guest

    BlueKeep RCE Flaw Gets Micropatch for Always-On Servers
    May 24, 2019
    https://www.bleepingcomputer.com/ne...e-flaw-gets-micropatch-for-always-on-servers/
     
  17. guest

    guest Guest

    Zero-Day Flaw in Windows 10 Task Scheduler Gets Micropatch
    May 31, 2019
    https://www.bleepingcomputer.com/ne...in-windows-10-task-scheduler-gets-micropatch/
     
  18. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
  19. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,592
    Location:
    U.S.A.
    Just block schtasks.exe since it is only used for legacy XP apps:
     
  20. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    Windows 7 and Server 2008 Get 0patch Security Fixes After EoS
    https://www.bleepingcomputer.com/ne...ver-2008-get-0patch-security-fixes-after-eos/
     
  21. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    10,210
    Location:
    Among the gum trees
    0Patch just updated here but I'm having trouble finding Release Notes.
     
  22. zapjb

    zapjb Registered Member

    Joined:
    Nov 15, 2005
    Posts:
    5,554
    Location:
    USA still the best. But barely.
    I thought for myself rereading this would help me decide about this program.

    I'd like to hear from some Wilders OGs (before 2010) about it.

    At this point it's a no for me.
     
  23. guest

    guest Guest

    This might explain the reason for the latest update:
     
  24. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    735
    Location:
    South Park, CO
    I'm a Wilder's member since 2012, and I decided to stop using 0patch after having multiple unexplained shutdown errors on Windows 10 Home soon after installing it. I feel that keeping the OS updated through the vendor + hardening w/ OSArmor is good enough for my use case.
     
  25. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    2,003
    Location:
    Member state of European Union
    Well, Windows 10 is supported OS and will be in foreseeable future, so I don't know what is the point of using 0patch to patch Windows 10.
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.