0patch

Discussion in 'other security issues & news' started by Rafales, Jun 7, 2016.

  1. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,360
    Location:
    Here
    No Source Code For a 14-Year Old Vulnerable DLL? No Problem. (CVE-2018-20250)
    https://blog.0patch.com/2019/02/no-source-code-for-14-year-old.html
     
  2. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    18,896
    ACROS Security Launches 0patch PRO
    April 2, 2019
    https://www.securityweek.com/acros-security-launches-0patch-pro
     
  3. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    18,896
    Unofficial Patch Released for Java Flaws Found by Google Researcher
    April 5, 2019
    https://www.securityweek.com/unofficial-patch-released-java-flaws-found-google-researcher
     
  4. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,042
    Location:
    Among the gum trees
    0Patch is currently patching "No CVE Microsoft Internet Explorer Missing Error Check on Reading Mark-Of-The-Web" when several of my programs run on my Win10 x64 1809 machine. :thumb:

    https://0patch.com/patches.html

    I can't see a reason not to use this program, at least the free version anyway. If I had a Win7 machine I may even consider the Pro version after January 2020.
     
  5. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    5,241
    Location:
    USA
    I find it ridiculous that you cannot change the default handler for this file type. At least not through the standard UI. You would think Edge would be an option, not IE only.
     
  6. Trooper

    Trooper Registered Member

    Joined:
    Jan 26, 2005
    Posts:
    4,163
    Agreed. I am currently using the free version myself.
     
  7. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    18,896
    Microsoft Edge Uses a Secret Trick And Breaks Internet Explorer's Security
    April 17, 2019
    https://blog.0patch.com/2019/04/microsoft-edge-uses-secret-trick-and.html
     
  8. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    7,701
    Location:
    U.S.A.
    Also from above 0patch article and for clarification as I posted in the other Wilder's thread on this issue:
    In other words if you never use Edge, you don't have to worry about IE11 or other software exploiting. As the 0patch article mentions, IE11 is not the only software affected by this vulnerability.

    -EDIT- Also this is notable:
    Which means Edge is really the vulnerable browser here.
     
    Last edited: Apr 18, 2019
  9. Dragon1952

    Dragon1952 Registered Member

    Joined:
    Sep 16, 2012
    Posts:
    1,832
    Location:
    Hollow Earth - Telos
    Woody posted a Tweet today that showed how a Win 7 person like me can easily Block the MHT files at the core of the problem.
     
  10. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,042
    Location:
    Among the gum trees
    Last edited: Apr 18, 2019
  11. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,042
    Location:
    Among the gum trees
    Windows 7 isn't affected as it involves Edge browser, so I wouldn't worry about it on Win7.
     
  12. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    384
    Location:
    USA
    I installed the latest 0patch on Windows 10 Home (i3-6100U, 4 GB RAM), but it caused the computer to slow down drastically at reboot and start-up, so I uninstalled it. (It only found code for 2 processes, one of which I don't use.)
     
  13. Krusty

    Krusty Registered Member

    Joined:
    Feb 3, 2012
    Posts:
    7,042
    Location:
    Among the gum trees
    I never noticed that on my Win10 x64 1809 machines.
     
  14. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    384
    Location:
    USA
    Last edited: Apr 20, 2019
  15. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    384
    Location:
    USA
    I ended up having to reinstall Windows because it kept crashing on startup, and System Restore wouldn't complete, even from Safe Mode. I can't say for certain if this was caused by 0patch, but I don't plan to try it again :(
     
  16. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    18,896
    BlueKeep RCE Flaw Gets Micropatch for Always-On Servers
    May 24, 2019
    https://www.bleepingcomputer.com/ne...e-flaw-gets-micropatch-for-always-on-servers/
     
  17. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    18,896
    Zero-Day Flaw in Windows 10 Task Scheduler Gets Micropatch
    May 31, 2019
    https://www.bleepingcomputer.com/ne...in-windows-10-task-scheduler-gets-micropatch/
     
  18. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,360
    Location:
    Here
  19. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    7,701
    Location:
    U.S.A.
    Just block schtasks.exe since it is only used for legacy XP apps:
     
  20. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    12,360
    Location:
    Here
    Windows 7 and Server 2008 Get 0patch Security Fixes After EoS
    https://www.bleepingcomputer.com/ne...ver-2008-get-0patch-security-fixes-after-eos/
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.