Windows 10 Windows 10 Update Assistant Vulnerability Manual Fix

jobeard

TS Ambassador
Reference: https://www.bleepingcomputer.com/news/microsoft/windows-10-update-assistant-vulnerability-needs-manual-fix-heres-how/


Windows 10 Update Assistant, new version of the Windows 10 Update Assistant in order to fix a local privilege escalation vulnerability. With the October 2019 Patch Tuesday security fixes, Microsoft released a security bulletin for a local privilege escalation vulnerability (CVE-2019-1378) in Windows 10 Update Assistant that was discovered by security researcher Jimmy Bayne.

What many users do not know is that the Windows 10 Update Assistant (WUA) is not a standalone program and will actually install itself into Windows in the C:\Windows10Upgrade folder. WUA is either installed on a computer manually by downloading the program from Microsoft or it is installed as part of the KB4023814 update.

To check if it is installed, you can either check if the KB4023814 update is installed or see if there is an uninstall entry for WUA in the Apps & features control panel as shown below.


In order to fix this vulnerability, users need to either remove the Windows 10 Update Assistant or download the latest version from Microsoft,which now contains and updated and fixed version, and install it.

Regardless of how it was installed, you can always remove the Windows 10 Update Assistant by opening a command prompt and then typing the following command and pressing Enter on your keyboard.

Code:
C:\Windows10Upgrade\Windows10UpgraderApp.exe /ForceUninstall
you will be shown a UAC prompt asking if you want to allow this app to make changes. You should click on the Yes button at this prompt.

launch Task Manager and end the UpdateAssistant.exe and the Windows10UpgraderApp.exe processes if they are running. Once terminated, you can delete the folders C:\Windows10upgrade or C:\Windows\Updateassistant *if they still exist*
 
Last edited: