The EFS API OpenEncryptedFileRaw(A/W), often used in backup software, continues to work in all versions of Windows (local and remote), except when backing up to or from a system running Windows Server 2008 SP2. OpenEncryptedFileRaw will no longer work on Windows Server 2008 SP2.
Note: If you are unable to use backup software on Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1 and later, after installing the updates that address this CVE, contact the manufacturer of your backup software for updates and support.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26925
Wenn WBADMIN unter Windows 7/2008 R2 ebenfalls betroffen ist, dürfte es vom Hersteller wohl keine Korrektur mehr geben. Werden diese konkreten Updates für Windows 7 überhaupt noch automatisch verteilt oder muss man die manuell einspielen?
May 10, 2022
Windows 7 for x64-based Systems Service Pack 1
-
Spoofing
Important
5014012
5013999
Monthly Rollup
Security Only
CVE-2022-26925
May 10, 2022
Windows 7 for 32-bit Systems Service Pack 1
-
Spoofing
Important
5014012
5013999
Monthly Rollup
Security Only
CVE-2022-26925
https://www.catalog.update.microsoft.com/Search.aspx?q=KB5014012
https://www.catalog.update.microsoft.com/Search.aspx?q=KB5013999
Das Posting wurde vom Benutzer editiert (11.05.2022 11:18).