• Hello and welcome! Register to enjoy full access and benefits:

    • Advertise in the Marketplace section for free.
    • Get more visibility with a signature link.
    • Company/website listings.
    • Ask & answer queries.
    • Much more...

    Register here or log in if you're already a member.

  • 🎉 WHV has crossed 72000 (72k) monthly views (unique) and 272000 clicks per month, as per Google Analytics! Thank you for your support! 🎉

New Windows RasMan Zero-Day Vulnerability Gets Free Unofficial Security Patches

johny899

johny899

New Member
Content Writer
Messages
994
Reaction score
3
Points
23
Balance
$26.4USD
Have you ever been worried about the reliability of Windows updates? If so, then you're not alone! Recently, a new Windows RasMan zero-day vulnerability has come to light, leading security experts to express their concern for this widely utilised but fundamentally insecure Windows component.

So What Exactly Is The Problem With RasMan?​

RasMan = Remote Access Connection Manager

This service is utilized by Windows to create VPN and remote connection. Security researchers have reported that there is now an active zero-day vulnerability associated with this service. This allows attackers to exploit the flaw before it is patched by Microsoft.

The exploit allows an attacker to achieve elevated privileges on a Windows computer and, once achieved, has the potential for catastrophic consequences. Therefore, RasMan should be taken seriously.

Likelihood Of Becoming Vulnerable​

Small vulnerabilities can result in large amounts of damage, and in this case, the flaw allows an attacker to escalate his/her access rights on a platform, which is a serious threat.

Below are a few more reasons as to why the weakness should be taken seriously:
  • A hacker can take advantage of the issue by using a local connection
  • All versions of Windows are affected, regardless of the level of updates applied
  • Microsoft has yet to issue a software update to correct the issue
Would you feel secure if your computer wasn't secured against unauthorized access?

Using Free Unofficial Patches Will Block This Exposure​

The good news is that the 0patch team has developed free, unofficial patches to stop this security lapse. They tend to respond faster than some of the larger vendors, and I have utilized their solutions in the past.

These patches:
  • Do not require a restart of the operating system
  • Only patch the vulnerable component of the operating system
  • Prosecute systems until Microsoft can provide an official update
The ability to quickly patch security holes like this are critical in protecting your systems.

Is It Beneficial To Use These Patches?​

If they are seen as temporary safety nets, then yes. While Microsoft Updates will be the best choice in the long run, it may take time until users know they are available. Home users/small office users can take advantage of these patches in the meantime for some level of immediate protection.
 
You must log in or register to reply here.
HostingNAP Ad

Support / Help Desk

Blog - (WHV)

Hosting Reviews

Navigation

  1. WHV Forums
    1. WHV - Announcements
    2. General Discussion
    3. Introduction
    4. Web Hosting Forum
    5. Help
    6. News
  2. Marketplace
    1. VPS Offers
    2. Dedicated Server Offers
    3. Shared Hosting Offers
    4. Reseller Hosting Offers
    5. Other Offers (Not Hosting)
    6. Domain Offers
  3. Web Hosting Discussion
    1. Hosting Software & Control Panels
    2. Other Hosting Tutorials
    3. Reviews
    4. Articles
    5. Offtopic
  4. Web Hosting Tutorials
    1. cPanel Tutorials
    2. WHM Reseller Tutorials
    3. DirectAdmin Tutorials
    4. Blesta Tutorials
    5. WHMCS Tutorials
  5. Hosting Extensions
    1. WHMCS Market
    2. Blesta Market
    3. HostBill Market
Top