科技回声

The actual information comes from Microsoft's CVE listing [0]. Allegedly it's to prevent a privilege escalation to SYSTEM via the Windows Update stack.<p>(From attackers who can already add subdirectories to the system drive, I guess. Though I wonder why Windows Update would even be writing stuff into the inetpub directory in the first place.)<p>[0] <a href="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21204" rel="nofollow">https://msrc.microsoft.com/update-guide/vulnerability/CVE-20...</a>

"the folder is created as part of a security fix"<p>Just like removing the ability to install Windows 11 without a Microsoft account is "security", right?

The stupid, it burns.

"the folder is created as part of a security fix"<p>Just like removing the ability to install Windows 11 without a Microsoft account is "security", right?

The stupid, it burns.

Microsoft: Anyone who deleted mysterious folder after update must put it back

3 条评论

Microsoft: Anyone who deleted mysterious folder after update must put it back

3 条评论