Microsoft’s PowerShell tool is not immune to security vulnerabilities, far from it. The recent discovery of vulnerabilities shows that Microsoft sometimes needs to patch its scripting tool. The Redmond company has just released a detection and correction tool named KB4074629, which it is advisable to install to avoid trouble.
Last March, a security flaw related to the management of BitLocker was discovered within Windows. To correct it, Microsoft distributed a script PowerShell. This is the case again today, but this time for a whole set of vulnerabilities.
For memory, PowerShell is a tool natively present in the operating system since Windows 7 (formerly known as Microsoft Command Shell). More powerful than the command prompt, which it tends to replace, PowerShell is both a scripting language, a development kit and software for launching commands. But it is not spared by bugs and security flaws. And what better way to troubleshoot PowerShell issues than PowerShell itself?
Also read: Windows 11, a dangerous malware can bypass the secure boot of your PC
Microsoft releases a PowerShell script to detect recent Windows flaws
In order to help you see more clearly in the recent flaws discovered in Windows and PowerShell, Microsoft has therefore deployed a PowerShell script to run on your PC, regardless of whether it is running Windows 10 or Windows 11. SpeculationControl PowerShellit allows you to analyze whether your configuration is the victim of a security breach, among 13 vulnerabilities discovered in different versions of the operating system. These flaws concern in particular the loading of the data cache, the partial writing of the device register, vulnerabilities related to MMIO Inputs/Outputs, etc.
Two methods of setting up this PowerShell script are possible:
- rely on the PowerShell Gallery, in order to run the SpeculationControl script (the procedure is given on the page whose link is given at the bottom of this article)o
- install the PowerShell module via the TechNet ScriptCenter site, then download and unzip the SpeculationControl.zip script (same thing, this method is also described in the link below)
If your configuration is healthy and the protections activated, the script should return the value “true”. If this is not the case, to protect yourself from any vulnerabilities that may be discovered, download and manually install thee hotfix KB4074629 or through Windows Update.
Source : Microsoft Support
