Microsoft released a PowerShell script to help restore the ‘inetpub’ folder created by April 2025 Windows security updates, which is crucial for mitigating a high-severity privilege escalation vulnerability. Users are advised not to delete this folder, as doing so can expose systems to security risks; the script ensures proper permissions are set for safe use. #CVE-2025-21204 #inetpub #WindowsSecurity
Keypoints
- Microsoft’s April 2025 update automatically creates an ‘inetpub’ folder to mitigate a critical vulnerability.
- Deleting the folder can reintroduce security risks, especially related to privilege escalation.
- A PowerShell script is available to help restore and correctly secure the ‘inetpub’ folder if needed.
- The security flaw involves improper link resolution that can be exploited for permission escalation.
- Microsoft emphasizes that the folder should not be deleted and provides guidance for proper management.
Views: 18