This isn’t an endorsement. If you read my summary of this month’s patches, you’ll recall that there’s one potentially important patch: Microsoft relea
[See the full post at: Single-purpose patch for CVE-2018-8174, the VBScript 0day, available from 0patch]
![]() |
There are isolated problems with current patches, but they are well-known and documented on this site. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
-
Single-purpose patch for CVE-2018-8174, the VBScript 0day, available from 0patch
Home » Forums » Newsletter and Homepage topics » Single-purpose patch for CVE-2018-8174, the VBScript 0day, available from 0patch
- This topic has 19 replies, 14 voices, and was last updated 4 years, 10 months ago.
Tags: 0patch CVE-2018-8174
AuthorTopicwoody
ManagerViewing 6 reply threadsAuthorReplies-
Seff
AskWoody PlusI wouldn’t personally be tempted by an independent patch.
First, I don’t know the supplier of the patch and therefore wouldn’t want to risk them compromising my machine for their own ends.
Second, I would be concerned about future compatibility problems once Microsoft issue their own patch related to this, or indeed all future patches generally.
4 users thanked author for this post.
-
Microfix
AskWoody MVPTo add to seff’s comment, my initial concerns were:
1. How would these fixes be undone to revert to default? no method available as a failsafe should something go wrong..other than system restore/ image/ registry backup etc..2. How do these 3rd party patches affect the system integrity? sfc /scannow (verifyonly..etc)
3. When an MS patch IS released to fix the issue, whos to say that the system couldn’t be broken due to the 3rd party patch already being on the system. (no method of removal)Edit: does have an installer/ uninstaller
There’s just too many unknowns for people without VM’s and I’d happily advise those without a Windows VM not to use 3rd party patches, not everyone is a technical expert.
Wait…MS will fix it (fingers crossed, based on last 5 months anyway)
Keep IT Lean, Clean and Mean! -
ky41083
AskWoody Lounger2. How do these 3rd party patches affect the system integrity? sfc /scannow (verifyonly..etc)
0patch does not in any way effect filesystem integrity. It is strictly a memory patcher, i.e. all patching happens in RAM only, on demand (when the code to be patched is called into RAM). This is why patching & unpatching with 0patch is more or less instant, and extremely safe.
Edit: does have an installer/ uninstaller
There’s just too many unknowns for people without VM’s and I’d happily advise those without a Windows VM not to use 3rd party patches, not everyone is a technical expert. Wait…MS will fix it (fingers crossed, based on last 5 months anyway)
Normally I would not recommend 3rd party patches either, but 0patch is an extremely well structured, organized, and tested solution. Honestly, it’s exactly how every vendor should quickly roll out patches for in the wild exploits. Instant apply / unapply, in memory only, nothing is ever permanently modified, I could go on all day…
Patches from other sources, especially in persistent “modify on disk data” form, I would avoid like the plague.
2 users thanked author for this post.
-
Microfix
AskWoody MVPall patching happens in RAM only, on demand (when the code to be patched is called into RAM). This is why patching & unpatching with 0patch is more or less instant, and extremely safe.
Problem I have with this is, Spectre/ Spectre v2 and possible sideband violations/ exploitations. I’ve never needed or used 3rd party OS patches to be safe online (trusting my instincts). Thanks for the explanation and hope others can do what they think is right.
Honestly, it’s exactly how every vendor should quickly roll out patches for in the wild exploits. Instant apply / unapply, in memory only, nothing is ever permanently modified, I could go on all day…
I could not agree more 🙂
Keep IT Lean, Clean and Mean!1 user thanked author for this post.
-
-
-
anonymous
Guest-
PKCano
ManagerYour Windows (any version) computer does!!
Even if you do not use it for your browser, it is integrated into and used by the Windows Operating System. If you leave it unpatched, you are leaving your computer unpatched and not secure..
-
anonymous
Guest
dononline
AskWoody Loungergborn
AskWoody_MVP0patch is long in business and provided a couple of useful patches in the past (I’ve blogged several times about their solutions). If you are facing the situation that you can leave your machine vulnerable or closing the vulnerability but haven’t a network, then 0patch can be a solution – imho.
Ex Microsoft Windows (Insider) MVP, Microsoft Answers Community Moderator, Blogger, Book author
https://www.borncity.com/win/
Barry
AskWoody LoungerCascadian
AskWoody LoungerI am very appreciative for your efforts to give information that is available, even when it does not quite meet the high standard of an endorsement. I think you did everything you could in plain language to say here is an available option.
I also liked the
impliedinferred by me idea that if it can be patched, it could have been patched by the responsible owner of my licensed copy operating system. Thanks for dispersing the information to us.4 users thanked author for this post.
Bob99
AskWoody PlusOn one of the other threads here on Askwoody, I found a link to an MS blog page that describes (from 2017, I believe) how to disable VBscript within IE. It’s simply a matter of changing two registry entries or using GPEdit to do the same, depending on your flavor of Windows.
BTW, the thread was from two or three weeks ago. The link leads to a Microsoft blog page, wherein the blogger (an employee from MS no less!) describes the “new feature” wherein one can disable VBScript within Win 10 and below. For some editions, you use regedit. For others, you use GPEdit.
I run Win7Pro 64 bit SP1, and had to use the regedit method because the entry didn’t exist when I went to GPEdit.
Can one of the MVP’s dig up the post and copy/paste the link here on this thread?
I would think that disabling VBScript within IE would be a good workaround until MS stops breaking folks’ networking with 4103718 later this month.
-
RDRguy
AskWoody LoungerAll, not sure exactly what or where it was posted in 2017 but how about this link at Microsoft support:
Interesting that it was last updated on Apr 20, 2018
Another Microsoft link describing new group policy settings for IE11:
This one’s dated 7/27/2017
Win7 - PRO & Ultimate, x64 & x86
Win8.1 - PRO, x64 & x86
Groups A, B & ABS -
anonymous
Guest -
anonymous
Guest@bob99 posting anonymously here. Yes, both you and @RDRguy just above you posted the link I was referring to. Thanks for digging it up! It just might help someone reduce their stress level by disabling VBScript within IE and being able to wait for MS to fix the faulty patch instead of worrying about getting a malware infection because they can’t go without networking.
However, before we go too far down this road, the following question bears asking:
@abbodi86 , @CH100 , @MrBrian , is the above method of disabling VBScript within IE a valid workaround for the VBScript zero day vulnerability that’s allegedly fixed by this month’s faulty security only patches and security rollups?
-
columbia2011
AskWoody Lounger-
anonymous
GuestIt is included in this month’s security rollup update. However, on several machines, installing the update removes network card drivers without reinstalling them successfully thereby rendering them unable to reach the Internet or any network for communications and for re-downloading fixes for the error.
This month’s security only update also exhibits the same behavior of removing and not reinstalling the network card driver(s) successfully.
At the moment, I don’t recall if this unwanted behavior is limited to Windows 7 machines or if it’s also present in this month’s updates for Windows 8/8.1 and Windows 10.
1 user thanked author for this post.
Viewing 6 reply threads -

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
Search Newsletters
Search Forums
View the Forum
Search for Topics
Recent Topics
-
Refurbished HP ProBook
by
Kathy Stevens
2 hours, 2 minutes ago -
Microsoft PC Manager (beta) updates
by
Alex5723
1 hour, 44 minutes ago -
Ubuntu Cinnamon becomes an official flavor, making Linux Mint obsolete
by
Alex5723
5 hours, 56 minutes ago -
HDMI KVM switch for DP
by
freelab23
13 hours, 41 minutes ago -
My Experience with Win 11 ver 22H2
by
agoldhammer
20 hours, 6 minutes ago -
Email from Mail on my iPhone to Gmail address failed
by
DrRon
1 hour, 55 minutes ago -
Can’t Update Win 10 past 21H2
by
cmndo97
22 hours, 12 minutes ago -
Revo Uninstaller (freeware) Updates
by
Microfix
14 hours, 41 minutes ago -
The Third deployment phase for CVE-2022-37967 starts April 11, 2023
by
Alex5723
22 hours, 40 minutes ago -
Firefox to support Windows 7 and 8 systems well into 2024 at least
by
Alex5723
7 hours, 9 minutes ago -
Microsoft 365 Personal – Repeated Free Two Month Extensions
by
BarryEB
1 day ago -
KB5023702 for Server 2019 – Defer as of MPL March 27
by
Aviel
6 hours, 10 minutes ago -
eSIM out, iSIM in?
by
Alex5723
1 day, 8 hours ago -
MS-DEFCON 4: Win11 22H2 not ready for prime time
by
Susan Bradley
1 hour, 47 minutes ago -
Email from Mail on my iPhone to Gmail address failed
by
DrRon
1 day, 10 hours ago -
Microsoft Edge Remover
by
Alex5723
21 hours, 22 minutes ago -
Windows Desktop refreshes repeatedly every few seconds
by
JimT777
5 hours, 38 minutes ago -
Apple zero days fixed today
by
Susan Bradley
1 day, 5 hours ago -
W10 22H2 Desktop rogue icon won’t allow me to rename, delete, or replace it
by
lanshark
3 hours, 52 minutes ago -
Footnote separators not deleting
by
Ursula
1 day, 19 hours ago -
Should I Go Beyond Version 21H2
by
kstephens43
10 hours, 57 minutes ago -
MacStealer: New macOS-based Stealer Malware Identified
by
Alex5723
1 day, 18 hours ago -
PowerShell – Testers Needed
by
RetiredGeek
13 hours, 41 minutes ago -
Audio from www.whenradiowas.com stops playing after 7-20 minutes
by
David Pressman
1 day, 2 hours ago -
KB4023057: Update for Windows Update Service components
by
RetiredGeek
21 hours, 47 minutes ago -
win 12 as BORG?
by
krism
1 day, 18 hours ago -
Windows 11 — should I stay on Windows 10?
by
DDR
21 hours, 57 minutes ago -
Did I really install PaintShop Pro?
by
Mike Ray
1 day, 18 hours ago -
You’re fired if you don’t know how to use GPT-4
by
B. Livingston
15 hours, 5 minutes ago -
Microsoft 365 Copilot announced
by
Will Fastie
1 day, 4 hours ago
Recent blog posts
Key Links
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.