Windows 10: CVE-2022-30190 workaround for Windows 7

Discus and support CVE-2022-30190 workaround for Windows 7 in Windows 10 Gaming to solve the problem; The guidance for CVE-2022-30190 mentions deleting the MSDT URL Protocol as a workaround for this vulnerability.... Discussion in 'Windows 10 Gaming' started by El_Desaparecido, Sep 8, 2022.

  1. EL_DESAPARECIDO
    El_Desaparecido Win User

    CVE-2022-30190 workaround for Windows 7


    The guidance for CVE-2022-30190 mentions deleting the MSDT URL Protocol as a workaround for this vulnerability. https://msrc-blog.microsoft.com/2022/05/30/guidance-for-cve-2022-30190-microsoft-support-diagnostic-tool-vulnerability/However, the FAQ says "The registry key mentioned in the workaround section will not exist in earlier supported versions of Windows, so the workaround is not required."Does this mean there is no workaround for Windows 7 and the only solution is to install the July 2022 security update?

    :)
     
    El_Desaparecido, Sep 8, 2022
    #1
  2. REYCKO_
    Reycko_ Win User

    [NEW UNPATCHED EXPLOIT] How to be safe from the CVE-2022-30190 exploit (workaround / temporary fix until it is patched) (Windows 7+)

    So, there has been a new exploit called CVE-2022-30190 (MSDT exploit) that's been going on for about 7 weeks (not 100% accurate) and I kinda wanted to make a little post about the official temporary workaround (Microsoft Security Response Center article here). Also yes, it should work for Windows® 7+.

    What the exploit does (not in detail because I'm not qualified for it nor ThioJoe):

    (Source: https://www.youtube.com/c/ThioJoe)

    So the exploit uses MSDT (Microsoft Diagnostics Troobleshooting Wizard, which is a tool for sending some PC info to get easier help from the Microsoft Phone Support) to run Powershell / Command Prompt / Batch code from Shortcuts and Microsoft Word® files.

    The Workaround removes the ability to search for "ms-msdt://" in any browser to open the app (this is how it runs the app to do the exploit)

    Workaround / Temporary Fix:

    (Source: Microsoft Security Response Center)

    1. Run Command Prompt as Administrator.
    2. To back up the registry key, execute the command “reg export HKEY_CLASSES_ROOT\ms-msdt filename.reg“
    3. Execute the command “reg delete HKEY_CLASSES_ROOT\ms-msdt /f”.
    How to undo the workaround (when it is patched)

    1. Run Command Prompt as Administrator.
    2. To restore the registry key, execute the command “reg import filename.reg
    (filename is the location of the file, I personally recommend to just put it in the C:\ drive e.g. "C:\Before CVE-2022-30190 was patched.reg")

    Thanks for reading, and stay safe!

    * Moved from Virus & Malware
     
    Reycko_, Sep 8, 2022
    #2
  3. UBISI
    Ubisi Win User
    CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability

    Hi Brain

    please simplify your response , do you mean if the folder ms-msdt is not in the registry , the server is not vulnarable to CVE-2022-30190
     
    Ubisi, Sep 8, 2022
    #3
  4. ṢMEED
    Ṣmeed Win User

    CVE-2022-30190 workaround for Windows 7

    Ṣmeed, Sep 8, 2022
    #4
Thema:

CVE-2022-30190 workaround for Windows 7

Loading...

  1. CVE-2022-30190 workaround for Windows 7 - Similar Threads - CVE 2022 30190

  2. blacklotus CVE-2022-21894

    in Windows 10 Gaming
    blacklotus CVE-2022-21894: What's the latest news on the Blacklotus vulnerability?as CVE-2022-21894I'm becoming paranoid just booting up. The NSA has issued mitigation remedy but also issues a strongly worded caution.... Such as if you don't know what you're doing don't try it because it's difficult....

  3. blacklotus CVE-2022-21894

    in Windows 10 Software and Apps
    blacklotus CVE-2022-21894: What's the latest news on the Blacklotus vulnerability?as CVE-2022-21894I'm becoming paranoid just booting up. The NSA has issued mitigation remedy but also issues a strongly worded caution.... Such as if you don't know what you're doing don't try it because it's difficult....

  4. blacklocust CVE-2022-21894

    in Windows 10 Gaming
    blacklocust CVE-2022-21894: What's the latest news on the Blacklocust vulnerability?as CVE-2022-21894 https://answers.microsoft.com/en-us/windows/forum/all/blacklocust-cve-2022-21894/2d0c56b3-5ba4-43de-853c-0c1cd02adbaa

  5. CVE-2022-30190 workaround for Windows 7

    in Windows 10 Software and Apps
    CVE-2022-30190 workaround for Windows 7: The guidance for CVE-2022-30190 mentions deleting the MSDT URL Protocol as a workaround for this vulnerability. https://msrc-blog.microsoft.com/2022/05/30/guidance-for-cve-2022-30190-microsoft-support-diagnostic-tool-vulnerability/However, the FAQ says "The registry key...

  6. Was Follina CVE-2022-30190 not actually addressed in the June 2022 Security Patch?

    in Windows 10 Gaming
    Was Follina CVE-2022-30190 not actually addressed in the June 2022 Security Patch?: Hello, I have an issue with the flow of information when using the MSRC Portal, as the Follina CVE CVE-2022-30190 is not showing as part of the CVE's addressed in the June 2022 patch, even though it does say that the June 2022 Security Patch fixes the Vulnerability. Please...

  7. Was Follina CVE-2022-30190 not actually addressed in the June 2022 Security Patch?

    in Windows 10 Software and Apps
    Was Follina CVE-2022-30190 not actually addressed in the June 2022 Security Patch?: Hello, I have an issue with the flow of information when using the MSRC Portal, as the Follina CVE CVE-2022-30190 is not showing as part of the CVE's addressed in the June 2022 patch, even though it does say that the June 2022 Security Patch fixes the Vulnerability. Please...

  8. CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability

    in Windows 10 Software and Apps
    CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability: Hello Guys,Could you please help me on this.For the Microsoft Diagnostic Tool Vulnerability I have found the workaround like below.Run Command Prompt as Administrator.To back up the registry key, execute the command “reg export HKEY_CLASSES_ROOT\ms-msdt filename“Execute the...

  9. CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability

    in Windows 10 Gaming
    CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability: Hello Guys,Could you please help me on this.For the Microsoft Diagnostic Tool Vulnerability I have found the workaround like below.Run Command Prompt as Administrator.To back up the registry key, execute the command “reg export HKEY_CLASSES_ROOT\ms-msdt filename“Execute the...

  10. [NEW UNPATCHED EXPLOIT] How to be safe from the CVE-2022-30190 exploit workaround /...

    in AntiVirus, Firewalls and System Security
    [NEW UNPATCHED EXPLOIT] How to be safe from the CVE-2022-30190 exploit workaround /...: So, there has been a new exploit called CVE-2022-30190 MSDT exploit that's been going on for about 7 weeks not 100% accurate and I kinda wanted to make a little post about the official temporary workaround Microsoft Security Response Center article here. Also yes, it should...