Hi @ll,
in Windows 11 22H2. some imbeciles from Redmond added the following
(of course WRONG and INVALID) registry entries and keys which they
dare to ship to their billion world-wide users:
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSrpGp]
"RuleCount"=dword:00000002
"LastWriteTime"=hex(b):01,00,00,00,00,00,00,00
[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSrpGpDLL]
JFTR: the time stamp is 100ns past midnight on 1601-01-01;
the rule count is wrong too, there are ZERO rules.
Although these entries are bogus and no rules are actually present,
they disable SAFER as documented, for example in
<https://www.microsoftpressstore.com/articles/article.aspx?p=2228450&seqNum=11>
FIX: remove these registry entries and/or keys to enable SAFER again!
stay tuned, and far away from the crap made in Redmond
Stefan
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/
Source: 31/beF/3202/erusolcsidlluf/gro.stsilces
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
请登录后发表评论
注册