A zero-day exploit vulnerability is affecting Microsoft Office products, disable Microsoft Diagnostic Tool’s URL Protocol now!
The flaw allows URL execution from word documents even in a protected view, according to the TechLinked video.
There is no patch yet, and Microsoft advises disabling the MSDT URL Protocol. Instructions below.
In-depth video discussing Follina, here.
Workaround
To disable the MSDT URL Protocol
Disabling MSDT URL protocol prevents troubleshooters being launched as links including links throughout the operating system. Troubleshooters can still be accessed using the Get Help application and in system settings as other or additional troubleshooters. Follow these steps to disable:
- Run Command Prompt as Administrator.
- To back up the registry key, execute the command “reg export HKEY_CLASSES_ROOT\ms-msdt filename“
- Execute the command “reg delete HKEY_CLASSES_ROOT\ms-msdt /f”.
How to undo the workaround
- Run Command Prompt as Administrator.
- To restore the registry key, execute the command “reg import filename”
Get protection!
Eset Internet Security
ESET Internet Security® delivers rock-solid protection for everyday web users, built on ESET’s trademark best mix of detection, speed and usability.
Legendary antivirus technology
Multi-layered security protects you against all types of online and offline threats and prevents malware from spreading to other users.
