|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
Born, BleepingComputer: Malwarebytes fixes AdwCleaner, removing a DLL hijacking vulnerability
Günter Born is at it again. This time he found a DLL hijacking vulnerability in Malwarebytes’ AdwCleaner 8.
If Windows shows unwanted programs or displaying unwanted ads after installing software possible adware has been involved. In order to clean the system of this unwanted programs, the tool Malwarebytes AdwCleaner may be used (its free for private use)…
When AdwCleaner runs with administrative permissions, the code from the loaded DLL files is also executed as a process with administrative permissions. Normally this works well, because Windows does not find the DLL files in the folder of the program and then searches in the Windows folders. But if a malware knows that a tool has a DLL hijacking vulnerability for certain DLLs, it only needs to store a file with the same name in the folder containing the application.
Born notified Malwarebytes on Dec. 10 and they sent him a beta copy of a new version. That version also had a major DLL hijacking problem. Ultimately, Malwarebytes released a smarter version 8.0.1 without the security hole on Wednesday.
There’s a detailed explanation of the vulnerability and its resolution in this Lawrence Abrams post on BleepingComputer.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
InfoStealer Malware Data Breach Exposed 184 Million Logins and Passwords
by 10 hours, 54 minutes ago
-
How well does your browser block trackers?
by 5 hours, 42 minutes ago
-
You can’t handle me
by 1 hour, 36 minutes ago
-
Chrome Can Now Change Your Weak Passwords for You
by 6 hours, 34 minutes ago
-
Microsoft: Over 394,000 Windows PCs infected by Lumma malware, affects Chrome..
by 22 hours, 16 minutes ago
-
Signal vs Microsoft’s Recall ; By Default, Signal Doesn’t Recall
by 1 hour, 46 minutes ago
-
Internet Archive : This is where all of The Internet is stored
by 22 hours, 40 minutes ago
-
iPhone 7 Plus and the iPhone 8 on Vantage list
by 22 hours, 45 minutes ago
-
Lumma malware takedown
by 11 hours, 1 minute ago
-
“kill switches” found in Chinese made power inverters
by 1 day, 7 hours ago
-
Windows 11 – InControl vs pausing Windows updates
by 1 day, 7 hours ago
-
Meet Gemini in Chrome
by 1 day, 11 hours ago
-
DuckDuckGo’s Duck.ai added GPT-4o mini
by 1 day, 11 hours ago
-
Trump signs Take It Down Act
by 1 day, 19 hours ago
-
Do you have a maintenance window?
by 20 minutes ago
-
Freshly discovered bug in OpenPGP.js undermines whole point of encrypted comms
by 21 hours, 52 minutes ago
-
Cox Communications and Charter Communications to merge
by 1 day, 23 hours ago
-
Help with WD usb driver on Windows 11
by 7 hours, 22 minutes ago
-
hibernate activation
by 2 days, 7 hours ago
-
Red Hat Enterprise Linux 10 with AI assistant
by 2 days, 11 hours ago
-
Windows 11 Insider Preview build 26200.5603 released to DEV
by 2 days, 14 hours ago
-
Windows 11 Insider Preview build 26120.4151 (24H2) released to BETA
by 2 days, 14 hours ago
-
Fixing Windows 24H2 failed KB5058411 install
by 1 day, 10 hours ago
-
Out of band for Windows 10
by 2 days, 19 hours ago
-
Giving UniGetUi a test run.
by 3 days, 2 hours ago
-
Windows 11 Insider Preview Build 26100.4188 (24H2) released to Release Preview
by 3 days, 10 hours ago
-
Microsoft is now putting quantum encryption in Windows builds
by 1 day, 5 hours ago
-
Auto Time Zone Adjustment
by 3 days, 14 hours ago
-
To download Win 11 Pro 23H2 ISO.
by 3 days, 12 hours ago
-
Manage your browsing experience with Edge
by 12 hours, 9 minutes ago
Remembering Woody
