This isn’t an endorsement. If you read my summary of this month’s patches, you’ll recall that there’s one potentially important patch: Microsoft relea
[See the full post at: Single-purpose patch for CVE-2018-8174, the VBScript 0day, available from 0patch]
![]() |
There are isolated problems with current patches, but they are well-known and documented on this site. |
SIGN IN | Not a member? | REGISTER | PLUS MEMBERSHIP |
-
Single-purpose patch for CVE-2018-8174, the VBScript 0day, available from 0patch
Home » Forums » Newsletter and Homepage topics » Single-purpose patch for CVE-2018-8174, the VBScript 0day, available from 0patch
- This topic has 19 replies, 14 voices, and was last updated 5 years ago.
Tags: 0patch CVE-2018-8174
AuthorTopicwoody
ManagerViewing 6 reply threadsAuthorReplies-
Seff
AskWoody PlusI wouldn’t personally be tempted by an independent patch.
First, I don’t know the supplier of the patch and therefore wouldn’t want to risk them compromising my machine for their own ends.
Second, I would be concerned about future compatibility problems once Microsoft issue their own patch related to this, or indeed all future patches generally.
4 users thanked author for this post.
-
Microfix
AskWoody MVPTo add to seff’s comment, my initial concerns were:
1. How would these fixes be undone to revert to default? no method available as a failsafe should something go wrong..other than system restore/ image/ registry backup etc..2. How do these 3rd party patches affect the system integrity? sfc /scannow (verifyonly..etc)
3. When an MS patch IS released to fix the issue, whos to say that the system couldn’t be broken due to the 3rd party patch already being on the system. (no method of removal)Edit: does have an installer/ uninstaller
There’s just too many unknowns for people without VM’s and I’d happily advise those without a Windows VM not to use 3rd party patches, not everyone is a technical expert.
Wait…MS will fix it (fingers crossed, based on last 5 months anyway)
Keeping IT Lean, Clean and Mean! -
ky41083
AskWoody Lounger2. How do these 3rd party patches affect the system integrity? sfc /scannow (verifyonly..etc)
0patch does not in any way effect filesystem integrity. It is strictly a memory patcher, i.e. all patching happens in RAM only, on demand (when the code to be patched is called into RAM). This is why patching & unpatching with 0patch is more or less instant, and extremely safe.
Edit: does have an installer/ uninstaller
There’s just too many unknowns for people without VM’s and I’d happily advise those without a Windows VM not to use 3rd party patches, not everyone is a technical expert. Wait…MS will fix it (fingers crossed, based on last 5 months anyway)
Normally I would not recommend 3rd party patches either, but 0patch is an extremely well structured, organized, and tested solution. Honestly, it’s exactly how every vendor should quickly roll out patches for in the wild exploits. Instant apply / unapply, in memory only, nothing is ever permanently modified, I could go on all day…
Patches from other sources, especially in persistent “modify on disk data” form, I would avoid like the plague.
2 users thanked author for this post.
-
Microfix
AskWoody MVPall patching happens in RAM only, on demand (when the code to be patched is called into RAM). This is why patching & unpatching with 0patch is more or less instant, and extremely safe.
Problem I have with this is, Spectre/ Spectre v2 and possible sideband violations/ exploitations. I’ve never needed or used 3rd party OS patches to be safe online (trusting my instincts). Thanks for the explanation and hope others can do what they think is right.
Honestly, it’s exactly how every vendor should quickly roll out patches for in the wild exploits. Instant apply / unapply, in memory only, nothing is ever permanently modified, I could go on all day…
I could not agree more 🙂
Keeping IT Lean, Clean and Mean!1 user thanked author for this post.
-
-
-
anonymous
Guest-
PKCano
ManagerYour Windows (any version) computer does!!
Even if you do not use it for your browser, it is integrated into and used by the Windows Operating System. If you leave it unpatched, you are leaving your computer unpatched and not secure..
-
anonymous
Guest
dononline
AskWoody Loungergborn
AskWoody_MVP0patch is long in business and provided a couple of useful patches in the past (I’ve blogged several times about their solutions). If you are facing the situation that you can leave your machine vulnerable or closing the vulnerability but haven’t a network, then 0patch can be a solution – imho.
Ex Microsoft Windows (Insider) MVP, Microsoft Answers Community Moderator, Blogger, Book author
https://www.borncity.com/win/
Barry
AskWoody LoungerCascadian
AskWoody LoungerI am very appreciative for your efforts to give information that is available, even when it does not quite meet the high standard of an endorsement. I think you did everything you could in plain language to say here is an available option.
I also liked the
impliedinferred by me idea that if it can be patched, it could have been patched by the responsible owner of my licensed copy operating system. Thanks for dispersing the information to us.4 users thanked author for this post.
Bob99
AskWoody PlusOn one of the other threads here on Askwoody, I found a link to an MS blog page that describes (from 2017, I believe) how to disable VBscript within IE. It’s simply a matter of changing two registry entries or using GPEdit to do the same, depending on your flavor of Windows.
BTW, the thread was from two or three weeks ago. The link leads to a Microsoft blog page, wherein the blogger (an employee from MS no less!) describes the “new feature” wherein one can disable VBScript within Win 10 and below. For some editions, you use regedit. For others, you use GPEdit.
I run Win7Pro 64 bit SP1, and had to use the regedit method because the entry didn’t exist when I went to GPEdit.
Can one of the MVP’s dig up the post and copy/paste the link here on this thread?
I would think that disabling VBScript within IE would be a good workaround until MS stops breaking folks’ networking with 4103718 later this month.
-
RDRguy
AskWoody LoungerAll, not sure exactly what or where it was posted in 2017 but how about this link at Microsoft support:
Interesting that it was last updated on Apr 20, 2018
Another Microsoft link describing new group policy settings for IE11:
This one’s dated 7/27/2017
Win7 - PRO & Ultimate, x64 & x86
Win8.1 - PRO, x64 & x86
Groups A, B & ABS -
anonymous
Guest -
anonymous
Guest@bob99 posting anonymously here. Yes, both you and @RDRguy just above you posted the link I was referring to. Thanks for digging it up! It just might help someone reduce their stress level by disabling VBScript within IE and being able to wait for MS to fix the faulty patch instead of worrying about getting a malware infection because they can’t go without networking.
However, before we go too far down this road, the following question bears asking:
@abbodi86 , @CH100 , @MrBrian , is the above method of disabling VBScript within IE a valid workaround for the VBScript zero day vulnerability that’s allegedly fixed by this month’s faulty security only patches and security rollups?
-
columbia2011
AskWoody Lounger-
anonymous
GuestIt is included in this month’s security rollup update. However, on several machines, installing the update removes network card drivers without reinstalling them successfully thereby rendering them unable to reach the Internet or any network for communications and for re-downloading fixes for the error.
This month’s security only update also exhibits the same behavior of removing and not reinstalling the network card driver(s) successfully.
At the moment, I don’t recall if this unwanted behavior is limited to Windows 7 machines or if it’s also present in this month’s updates for Windows 8/8.1 and Windows 10.
1 user thanked author for this post.
Viewing 6 reply threads -

Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Welcome to our unique respite from the madness.
It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.
Search Newsletters
Search Forums
View the Forum
Search for Topics
Recent Topics
-
Remove One Drive
by
crudolphy
1 hour, 42 minutes ago -
Firefox users on Windows 7, 8 and 8.1 moving to Extended Support Release
by
Alex5723
3 hours, 51 minutes ago -
How to change “User Account Control:Run as administrator”
by
DKThompson
2 hours, 8 minutes ago -
Two monitors, want different “fixed” wallpaper on each one
by
MauryS
8 hours, 42 minutes ago -
Microsoft forcing move to Microsoft account?
by
Tom
6 hours, 37 minutes ago -
Event 2545 Device Management – Enterprise – Diagnostics – Provider
by
Tex265
10 hours, 2 minutes ago -
QBot malware exploits Windows WordPad EXE to take over
by
Alex5723
1 day, 5 hours ago -
Laptop powers off during KB5026361 update
by
dhunter
1 day, 5 hours ago -
How to enable Sleep in Shut down menu?
by
Alex5723
1 day, 6 hours ago -
Beware of Google’s .ZIP domain and password-embedded URLs
by
B. Livingston
2 hours ago -
Longstanding feature requests, and their status
by
Mary Branscombe
1 day, 14 hours ago -
Three typing tutors — no more “hunt and peck”
by
Deanna McElveen
1 day, 13 hours ago -
Is online banking secure?
by
Susan Bradley
1 hour, 6 minutes ago -
Bluetooth audio not working on older Lenovo T420 with Win 10
by
WSmsc0357
20 hours, 21 minutes ago -
Using wildcards in search and replace
by
Bob Karrow
1 day, 23 hours ago -
How is Windows XP an security risk?
by
Curious
10 hours, 22 minutes ago -
Is using VPN a good idea?
by
Tex265
1 day, 20 hours ago -
How to prevent/disable Bitlocker Automatic Device Encryption?
by
EricB
2 days, 7 hours ago -
Unexplained aspects of installing the latest update of Office 2021
by
TonyC
2 days, 7 hours ago -
Getting started with macOS Disk Utility: RAID, images, and repairs
by
Alex5723
2 days, 16 hours ago -
Getting started with macOS Disk Utility: Resizing, snapshots, and journaling
by
Alex5723
2 days, 16 hours ago -
Are you ready for AI?
by
Susan Bradley
4 hours, 42 minutes ago -
Windows 11 Insider Preview build 25375 released to Canary
by
joep517
2 days, 19 hours ago -
Windows 11 Insider Preview Build 22621.1825 and 22624.1825 released to BETA
by
joep517
2 days, 19 hours ago -
Duplicate image name brings up old images
by
Susan Bradley
4 days ago -
XP offline activation tool, xp_activate32.exe
by
Alex5723
1 day, 13 hours ago -
Huge Tesla leak reveals thousands of safety concerns, privacy problems
by
Alex5723
2 days, 2 hours ago -
Android : iRecorder – Screen Recorder new Android RAT
by
Alex5723
4 days, 5 hours ago -
HP has found an exciting new way to DRM your printer!
by
Alex5723
4 days, 5 hours ago -
Outlook 2019 Resend “you do not appear to be the original sender…” msg
by
Mw Ward
4 days, 16 hours ago
Recent blog posts
- Beware of Google’s .ZIP domain and password-embedded URLs
- Longstanding feature requests, and their status
- Three typing tutors — no more “hunt and peck”
- Is online banking secure?
- Are you ready for AI?
- MS-DEFCON 4: Skip those Secure Boot scripts
- Getting started with winget
- No NumLock key? Problem solved! Here’s the fix.
Key Links
Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.
Mastodon profile for DefConPatch
Mastodon profile for AskWoody
Home • About • FAQ • Posts & Privacy • Forums • My Account
Register • Free Newsletter • Plus Membership • Gift Certificates • MS-DEFCON Alerts
Copyright ©2004-2023 by AskWoody Tech LLC. All Rights Reserved.