At the moment in the game, Windows updates have become a bad jokeThe field is not a day when Microsoft solves the problem without creating two during the process. The latter is associated with the vulnerability created after the last update, which will allow the attacker to block future Windows updates.
Discovered by the security researcher Kevin Bomont, Latest update for Windows 10 and Windows 11 Introduces significant vulnerability. Failure This would allow the attacker to block all Windows updates On the computer, leaving it without the necessary security corrections.
The problem is related to Change introduced in the update of April 2025Designed to mitigate the vulnerability of the escalation of privileges in symbolic links, identified as CVE-2025-21204. As part of the correction, Microsoft automatically created the caused folder InetPub In all Windows 10 and Windows 11 systems.
Folder InetPubAs a rule, it is associated with objects of the IIS web server, now it plays a fundamental role in the process of updating Windows. Microsoft’s intention was to prevent the escalation of privileges Through symbolic links, the creation of this catalog is in a prophylactic way. Symbolic links are the indicators of the file system that can redirect the processes to other files or locations without the need for high resolutions.
Microsoft corrects Windows failure, representing a completely new
Although Microsoft warned users not to eliminate this folderBomont discovered that this could not cause a new vulnerability to service in Windows Services Pila. The researcher claims that Users without administrator permits can use the folder Thanks to the main operation from the command line:
When executing a command mklink /j c:\inetpub c:\windows\system32\notepad.exeThe user creates a catalog union, which, in fact, redirects the folder. This modification Causes all subsequent Windows Fallen updates During installation. When creating redirecting, the processes of critical update are completely changed or canceled, stopping the distribution of future reviews.
Given that The attack does not require high resolutionsAny local user can fulfill it, which is a significant vulnerability. Microsoft has not yet issued an application or an official solution for this new problem. Bomont confirmed that he contacted the Microsoft security center two weeks ago, but did not receive an answer.
Vulnerability This affects all systems that have security updating in April 2025.Therefore, its coverage is wide. Although the initial problem was associated with the escalation of privileges, this new vector introduces a method for constant disconnection of critical safety updates.
Currently, it is not known whether Microsoft will publish a specific correction or include a wider solution in the future of a cumulative update. As a temporary measure, it is recommended to eliminate the folder or limit access to the confidential catalogs of the operating system.
Source: Hiper Textual
I am Garth Carter and I work at Gadget Onus. I have specialized in writing for the Hot News section, focusing on topics that are trending and highly relevant to readers. My passion is to present news stories accurately, in an engaging manner that captures the attention of my audience.
