• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Solved Correct response to Security Bulletin MS15-011?


mcloaked

New Member
England

Posts
5
#1
After having installed the available Windows 8.1 updates for February as released on Tuesday last week, does anyone know if there is further action needed to respond to the critical security bulletin announcement publicised at:

https://www.us-cert.gov/ncas/curren...Microsoft-Releases-Critical-Security-Bulletin

that links to

https://technet.microsoft.com/library/security/MS15-011

I presume that this is additional to the normal monthly updates but was not at all clear if users need to implement a manual change as well as manually installing that update?

If anyone can clarify then it would be appreciated.
 

My Computer

System One

  • OS
    Windows 8.1 dual boot Arch Linux
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo
    Browser
    Chrome (plus IE11)
    Other Info
    Thinkpad S540 and IdeaPad Y510p both dual boot Windows 8.1 and Arch Linux. Other systems pure Arch Linux.

Cliff S

Missing my GIF avatars:(
Pro User
Bamberg Germany

Posts
2,397
#2
If you don't have Windows 8.1 pro version you don't have to/can't do anything. it has to do with group policy.
Summary
This security update resolves a privately reported vulnerability in Microsoft Windows. A remote code execution vulnerability exists in how Group Policy receives and applies connection data when a domain-joined system connects to a domain controller. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs, could view, change, or delete data, or could create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights​
 

My Computer

System One

  • OS
    Windows 8.1 Update Pro in Hyper-V/Windows 10 Pro 64 bit
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Cliff's Black & Blue Wonder
    CPU
    Intel Core i9-9900K
    Motherboard
    ASUS ROG Maximus X Hero
    Memory
    32 GB Quad Kit, G.Skill Trident Z RGB Series schwarz, DDR4-3866, 18-19-19-39-2T
    Graphics Card(s)
    ZOTAC GAMING GeForce RTX 2080 Ti AMP! Extreme Edition
    Sound Card
    (1) HD Webcam C270 (2) NVIDIA High Definition Audio (3) Realtek High Definition Audio
    Monitor(s) Displays
    BenQ BL2711U(4K) and a hp 27vx(1080p)
    Screen Resolution
    1920 x 1080 x 32 bits (4294967296 colors) @ 60 Hz
    Hard Drives
    C: Samsung 960 EVO NVMe M.2 SSD
    E: & O: Libraries & OneDrive-> Samsung 850 EVO 1TB
    D: Hyper-V VM's -> Samsung PM951 Client M.2 512Gb SSD
    G: System Images -> HDD Seagate Barracuda 2TB
    PSU
    Corsair HX1000i High Performance ATX Power Supply 80+ Platinum
    Case
    hanteks Enthoo Pro TG
    Cooling
    Thermaltake Floe Riing RGB TT Premium-Edition 360mm and 3 Corsair blue LED fans
    Keyboard
    Trust GTX THURA
    Mouse
    Trust GTX 148
    Internet Speed
    25+/5+ (+usually faster)
    Browser
    Edge; Chrome; IE11
    Antivirus
    Windows Defender of course & Malwarebytes Anti-Exploit as a
    Other Info
    Router: FRITZ!Box 7490
    Sound system: Philips Soundbar HTL2160 w/subwoofer

mcloaked

New Member
England

Posts
5
#3
Thank you for clarifying the issue. Presumably for anyone with the pro version of the O/S then it is important to change the policy manually, though it was not clear to me from reading the MS link to the details that it was a simple process to execute if you have to do so!
 

My Computer

System One

  • OS
    Windows 8.1 dual boot Arch Linux
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo
    Browser
    Chrome (plus IE11)
    Other Info
    Thinkpad S540 and IdeaPad Y510p both dual boot Windows 8.1 and Arch Linux. Other systems pure Arch Linux.

Cliff S

Missing my GIF avatars:(
Pro User
Bamberg Germany

Posts
2,397
#4
Thank you for clarifying the issue. Presumably for anyone with the pro version of the O/S then it is important to change the policy manually, though it was not clear to me from reading the MS link to the details that it was a simple process to execute if you have to do so!
At the second link you gave(TechNet) there was a link to a Microsoft support Knowledge Base article.
 

My Computer

System One

  • OS
    Windows 8.1 Update Pro in Hyper-V/Windows 10 Pro 64 bit
    Computer type
    PC/Desktop
    System Manufacturer/Model
    Cliff's Black & Blue Wonder
    CPU
    Intel Core i9-9900K
    Motherboard
    ASUS ROG Maximus X Hero
    Memory
    32 GB Quad Kit, G.Skill Trident Z RGB Series schwarz, DDR4-3866, 18-19-19-39-2T
    Graphics Card(s)
    ZOTAC GAMING GeForce RTX 2080 Ti AMP! Extreme Edition
    Sound Card
    (1) HD Webcam C270 (2) NVIDIA High Definition Audio (3) Realtek High Definition Audio
    Monitor(s) Displays
    BenQ BL2711U(4K) and a hp 27vx(1080p)
    Screen Resolution
    1920 x 1080 x 32 bits (4294967296 colors) @ 60 Hz
    Hard Drives
    C: Samsung 960 EVO NVMe M.2 SSD
    E: & O: Libraries & OneDrive-> Samsung 850 EVO 1TB
    D: Hyper-V VM's -> Samsung PM951 Client M.2 512Gb SSD
    G: System Images -> HDD Seagate Barracuda 2TB
    PSU
    Corsair HX1000i High Performance ATX Power Supply 80+ Platinum
    Case
    hanteks Enthoo Pro TG
    Cooling
    Thermaltake Floe Riing RGB TT Premium-Edition 360mm and 3 Corsair blue LED fans
    Keyboard
    Trust GTX THURA
    Mouse
    Trust GTX 148
    Internet Speed
    25+/5+ (+usually faster)
    Browser
    Edge; Chrome; IE11
    Antivirus
    Windows Defender of course & Malwarebytes Anti-Exploit as a
    Other Info
    Router: FRITZ!Box 7490
    Sound system: Philips Soundbar HTL2160 w/subwoofer

Users Who Are Viewing This Thread (Users: 0, Guests: 1)