Windows 11’s New Inetpub Folder is Hackable. Try This Temporary Fix
1 min read
Summary
A security researcher has discovered that the recent Windows cumulative update, designed to prevent a vulnerability whereby malware could be planted via a symlink in the Windows Update stack, has actually introduced a new vulnerability.
It involves the inetpub folder in the C drive: anyone with access to the computer can use a command to redirect the folder to another location, which causes Windows Update to fail.
This means that malware could be planted in the junction folder, which would then be executed by Windows, as it does not check for reparse points or file ownership when looking for the inetpub directory.
For now, it is possible to protect your PC by changing the permissions on the inetpub folder to block all users except for SYSTEM and TrustedInstaller.
However, this is only a temporary solution until Microsoft issues a patch to fix the vulnerability.
