Thursday, August 29, 2024

Time to patch your Windows computer

Microsoft has released a fix for a severe vulnerability in this month's Windows Update.  The problem here is that a Bad Guy sending a specially crafted IPv6 packet can run code on your computer.  Basically it's a spammer's/hacker's dream, and now there is demonstration code in the wild to do this.

If you run Windows 10 or 11, this is probably bad news for you.  Here's what you need to do:

  1. Check to see if you are reachable using IPv6.  If you only have IPv4, then you don't need to worry.
  2. If the site in the link above can reach you with IPv6, you need to run Windows Update.  Go to the Start Menu and type "Windows Update" in the search bar which will take you right to the update program.

I must say that I was surprised about my IPv6 connectivity.  But this is a really nasty bug, so get patching.

15 comments:

Richard said...

Need more information. I have an update downloaded on 8/8. Is that it? Windows website is useless as always.

Borepatch said...

Richard, this update should be dated August 15

Rick T said...

It is interesting that the test site FAQ talks about running out of IPv4 addresses in 2011, yet 13 years later IPv6 is still not the dominant method and allocation activity is declining.

LindaG said...

I really don't want to update my computer. I don't trust microsoft and I don't want all the new AI stuff and stuff to *help* me, on my computer. I run PC Matic. Isn't that enough?

matism said...

Those of us who rarely run Windows and who intend to drop it at the end of September do not worry about such things.
What a great thing the FedPigs have done by forcing Kaspersky out of the US!

Richard said...

Did as you said. Nothing but garbage. Went to manual download. More garbage and the usual W11 propaganda.

Borepatch said...

LindaG, I understand your mistrust of Microsoft's packaging. However, I don't expect that anything short of a security patch will protect you from this.

Rick T said...

Why load the IPv6 stack if you aren't using it? No stack, no vulnerability.

LindaG said...

Rick T, how would I not load the IPv6 stack?

Murphy(AZ) said...

The "upgrade" hit me on Thursday. It's like my computer has been carpet bombed. Files are inaccessible, moved around or just plain missing. My Geek is going to have a field day trying to figure this out. Thanks a bunch, Microsoft.

Rick T said...

How to not load the IPv6 stack? This is a bit technical, but not hard. Open the Settings app on the Start Menu. Select "Network and Internet", then select the network device you use to connect to the Internet (probably a Wifi adapter). Next Click on "Hardware Properties", scroll down and hit the Edit button next to "More adapter properties". That will open a new window showing what Windows loads for your connection. Scroll down and unselect "Internet Protocol Version 6 (TCP/IPv6)". Then click OK to close the tool, then you can close the Settings window. Done.

Richard said...

Are you using Windows 10 because there is no button for More adapter properties on my machine.

LindaG said...

Thank you, Rick. I had my son read this post and he had me sorted in about 5 minutes. My IPv6 is now 0.

And Richard, I am using Windows 10. My son went through the Device Manager and Network Adapters, if I remember right.

Richard said...

@Linda Thanks. I think I have it disabled in both wifi and vpn. It was a bit different but you gave the clue to the right place.

LindaG said...

Richard, Glad to hear it.