All of Microsoft's server and client Windows versions are susceptible to a new NTLM security flaw. An unofficial patch has been released by 0patch.
0patch RSS
0patch, a platform for distributing security patches for various products, has announced that it plans to provide five years of additional support for Windows 10 after the OS reaches its end of life.
Since 2020, Microsoft has been keeping Windows 7 alive via paid security updates delivered through Windows 7 ESU SKUs. Unfortunately for Windows 7 users, all of that is ending very soon.
Windows 7 and Server 2008 R2 extended security updates are bound to cease in 2023 and 2024, respectively. The 0patch team aims to take Microsoft's place in updating these unofficially.
Following the recent Follina security vulnerability, another Microsoft Support Diagnostic Tool (MSDT) bug has been found called "DogWalk". This one too has been ignored by Microsoft at first glance.
An unofficial patch for a Windows LPE security vulnerability under "CVE-2021-34484" is out, one that was supposedly fixed by Microsoft via its Patch Tuesday updates twice, but apparently not.