![“Paranormal Activity” – Official Trailer [HQ HD]](https://techcratic.com/wp-content/uploads/2024/12/1733250025_hqdefault-360x180.jpg)
Divya
2024-12-02 02:35:00
gbhackers.com
Cybersecurity researchers have identified a critical 0-day vulnerability in Windows Server 2012 and Server 2012 R2.
This previously unknown security flaw allows attackers to bypass the Mark of the Web (MoTW) verification on certain files, posing a significant threat to affected systems.
Vulnerability Details
The vulnerability, which was introduced over two years ago, has managed to evade detection despite the high level of scrutiny applied to Windows Server systems.
Even servers that have been fully updated with Extended Security Updates are vulnerable. This discovery underscores the persistent challenges in maintaining security in older software systems.
Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar
The researchers, who are holding back detailed information to prevent potential exploitation, have already notified Microsoft, as a report by 0Patch. They are awaiting an official fix from the tech giant, which could take time given the complexity of the issue.
In response to this critical security gap, the researchers have promptly issued micropatches.
These temporary fixes are being provided free of charge until Microsoft releases an official update. The micro patches cover the following configurations:
- Legacy Windows Versions:
- Windows Server 2012 updated to October 2023
- Windows Server 2012 R2 updated to October 2023
- Windows Versions Still Receiving Windows Updates:
- Windows Server 2012 with Extended Security Updates
- Windows Server 2012 R2 with Extended Security Updates
These patches have been seamlessly distributed to all affected computers with the 0patch Agent in PRO or Enterprise accounts.
Users can apply these micropatches without needing to reboot their systems, ensuring minimal disruption to operations.
The discovery of this vulnerability highlights the ongoing risk associated with unsupported Windows versions. Vulnerabilities are routinely identified and can be exploited by attackers aware of these security lapses.
This proactive approach is crucial in maintaining security while awaiting a more permanent solution from Microsoft.
It emphasizes the importance of layered security strategies and the role of third-party solutions in closing gaps left by official updates.
Analyse Advanced Malware & Phishing Analysis With ANY.RUN Black Friday Deals : Get up to 3 Free Licenses.
Keep your files stored safely and securely with the SanDisk 2TB Extreme Portable SSD. With over 69,505 ratings and an impressive 4.6 out of 5 stars, this product has been purchased over 8K+ times in the past month. At only $129.99, this Amazon’s Choice product is a must-have for secure file storage.
Help keep private content private with the included password protection featuring 256-bit AES hardware encryption. Order now for just $129.99 on Amazon!
Support Techcratic
If you find value in Techcratic’s insights and articles, consider supporting us with Bitcoin. Your support helps me, as a solo operator, continue delivering high-quality content while managing all the technical aspects, from server maintenance to blog writing, future updates, and improvements. Support Innovation! Thank you.
Bitcoin Address:
bc1qlszw7elx2qahjwvaryh0tkgg8y68enw30gpvge
Please verify this address before sending funds.
Bitcoin QR Code
Simply scan the QR code below to support Techcratic.
Please read the Privacy and Security Disclaimer on how Techcratic handles your support.
Disclaimer: As an Amazon Associate, Techcratic may earn from qualifying purchases.
