Microsoft Security: Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability
YouTube: Dave's Garage: New Windows Zero-Day Exploit - How to protect your PC from Follina
- This is a zero-day, application remote execution exploit.
- It effects Microsoft Support Diagnostic Tool.
- This tool is part of Microsoft Office.
- When you open an infected Microsoft document, a malicious template is downloaded and executed.
- The approved workaround is to backup then delete the
HKEY_CLASSES_ROOT\ms-msdt
registry.
- Start > Registry Editor
- Locate this directory:
HKEY_CLASSES_ROOT\ms-msdt
- Right-click > Export > Save as
msdtbackup.reg
in an accessible location. - Confirm export.
- Delete this directory.
Double-click the backup file. Keys are automatically re-intalled.