This month, Microsoft patched the CVE-2025–21204 vulnerability in Windows that allowed attackers to "execute and/or manipulate file management operations on a victim's machine with NT AUTHORITY\SYSTEM account privileges." To address this issue, the April 2025 update creates a new %systemdrive%\inetpub folder, even on devices not using Internet Information Services (IIS).
However, it turns out this fix has introduced a new vulnerability that can block installation of future Windows security updates. Security researcher Kevin Beaumont reports this new issue.
The problem is that any user can create a symbolic link redirecting the system path c:\inetpub
to another object, such as Notepad. As a result, attempts to install the April 2025 update (and likely all subsequent updates) either fail or roll back changes.
mklink /j c:\inetpub c:\windows\system32\notepad.exe
Beaumont notified Microsoft Security Research Center (MSRC) about this issue approximately two weeks ago but hasn't received a response yet.
No comments.
Users of Guests are not allowed to comment this publication.
Microsoft Windows 11, 10, 8.1, 7, XP, Server -
10-10-2024, 09:31PC motherboard schematics
3-05-2024, 12:29Laptop Motherboard Schematics
3-05-2024, 12:29Now MSNEWS.RU application is available in Google
13-03-2025, 17:34April cumulative updates for Windows 11 and
10-04-2025, 11:34Did you find a mistake?
You can report it to the administration.
Press CTRL+Enter while highlighting text