System Tutorial
Windows Series
Windows 11's New Inetpub Folder is Hackable. Try This Temporary Fix - Make Tech Easier
Windows 11's New Inetpub Folder is Hackable. Try This Temporary Fix - Make Tech Easier
May 14, 2025 pm 04:09 PM
We previously discussed how the inetpub folder in Windows is crucial and should not be deleted due to security concerns. Ironically, the presence of this folder poses a security risk in itself. It's surprisingly simple for even non-administrative users to manipulate this folder, potentially compromising your PC's security. Let's delve into how the inetpub folder can be exploited and what you can do to protect your system until Microsoft offers a permanent fix.
How Can the Inetpub Folder Be Exploited?
Starting with the April 2025 cumulative update for Windows 11, an empty inetpub folder is now created in the C drive. This update aimed to fix a vulnerability that allowed attackers to use absent directories to insert symlinks into the Windows Update stack. However, attackers can still exploit this by replacing the folder with a directory junction, causing Windows Update to target the wrong location and fail.
Any user with access to your PC can execute a simple command without admin rights to alter the inetpub folder's final directory. As noted by security expert Kevin Beaumont, executing the command mklink /J C:\inetpub C:\Windows\System32\notepad.exe can redirect the folder to point to Notepad or any other file, leading to Windows update failures.
Internally, the Windows Servicing Stack operates as SYSTEM and regards C:\inetpub as a secure directory. It does not verify for reparse points or ownership, so when it attempts to place files there and encounters a junction to a file, the update process either fails or reverts.
A Temporary Fix for This Vulnerability
Microsoft has yet to address this vulnerability or confirm if a solution will be included in future updates. In the meantime, you can implement measures to reduce the risk of this vulnerability being exploited.
Creating a directory junction necessitates write/delete permissions on the parent folder. By removing these permissions from all user accounts, while still allowing SYSTEM and TrustedInstaller to retain them, you prevent any non-system process (including admins) from using mklink /J on “C:\inetpub”. Here’s how to do it:
On the C drive, right-click the inetpub folder and choose Properties.
Navigate to the Security tab and click on Advanced at the bottom.
Click Disable inheritance, and when prompted, select Remove all inherited permissions from this object.
Click Add, then Select a principal. In the next window, type SYSTEM, click Check Names, and then OK.
Under Basic permissions, choose Full control and click OK.
Repeat the Add principal process, this time entering NT SERVICE\TrustedInstaller, granting Full control, and clicking OK. Close all windows by clicking OK.
Now, no users can access or modify the folder, and any attempt will trigger a Windows permission denied message. Windows and its updater will still have access to update the PC.
To undo these changes, revisit the Advanced Security Settings window, click Enable inheritance, and then Apply.
This action will restore the original permissions. Simply delete the manually added SYSTEM and TrustedInstaller entries by selecting them and clicking Remove.
This approach should safeguard your PC until Microsoft resolves the vulnerability. The adjusted permissions should facilitate smooth Windows updates. If you encounter issues with Windows updates, consider resetting the Windows update components before reverting these permissions.
The above is the detailed content of Windows 11's New Inetpub Folder is Hackable. Try This Temporary Fix - Make Tech Easier. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undress AI Tool
Undress images for free
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
How to remove password from Windows 11 login
Jun 27, 2025 am 01:38 AM
If you want to cancel the password login for Windows 11, there are three methods to choose: 1. Modify the automatic login settings, uncheck "To use this computer, users must enter their username and password", and then restart the automatic login after entering the password; 2. Switch to a passwordless login method, such as PIN, fingerprint or face recognition, configure it in "Settings>Account>Login Options" to improve convenience and security; 3. Delete the account password directly, but there are security risks and may lead to some functions being limited. It is recommended to choose a suitable solution based on actual needs.
I Became a Windows Power User Overnight With This New Open-Source App from Microsoft
Jun 20, 2025 am 06:07 AM
Like many Windows users, I am always on the lookout for ways to boost my productivity. Command Palette quickly became an essential tool for me. This powerful utility has completely changed how I interact with Windows, giving me instant access to the
How to uninstall programs in Windows 11?
Jun 30, 2025 am 12:41 AM
There are three main ways to uninstall programs on Windows 11: 1. Uninstall through "Settings", open the "Settings" > "Apps" > "Installed Applications", select the program and click "Uninstall", which is suitable for most users; 2. Use the control panel, search and enter "Control Panel" > "Programs and Functions", right-click the program and select "Uninstall", which is suitable for users who are accustomed to traditional interfaces; 3. Use third-party tools such as RevoUninstaller to clean up more thoroughly, but pay attention to the download source and operation risks, and novices can give priority to using the system's own methods.
How to run an app as an administrator in Windows?
Jul 01, 2025 am 01:05 AM
To run programs as administrator, you can use Windows' own functions: 1. Right-click the menu to select "Run as administrator", which is suitable for temporary privilege hike scenarios; 2. Create a shortcut and check "Run as administrator" to achieve automatic privilege hike start; 3. Use the task scheduler to configure automated tasks, suitable for running programs that require permissions on a scheduled or background basis, pay attention to setting details such as path changes and permission checks.
Windows 11 Is Bringing Back Another Windows 10 Feature
Jun 18, 2025 am 01:27 AM
This might not be at the top of the list of features people want to return from Windows 10, but it still offers some usefulness. If you'd like to view the current minutes and seconds without turning on that display in the main taskbar clock (where it
Windows 10 KB5061087 fixes Start menu crash, direct download links
Jun 26, 2025 pm 04:22 PM
Windows 10 KB5061087 is now rolling out as an optional preview update for those on version 22H2 with Start menu fixes.
Microsoft: DHCP issue hits KB5060526, KB5060531 of Windows Server
Jun 26, 2025 pm 04:32 PM
Microsoft confirmed that the DHCP server service might stop responding or refuse to connect after the June 2025 Update for Windows Server.
Building Your First Gaming PC in 2025: What You Actually Need
Jun 24, 2025 am 12:52 AM
In the past, I always viewed the i5 lineup as anemic when it came to gaming. However, in 2025, a mid-range CPU is more than enough to start your gaming journey. Many games still don’t fully utilize multi-core performance as well as they could, so
