0patch Provides a patch for the Windows MotW zero-day vulnerability first

A zero-day vulnerability in Windows Mark of the Web (MotW) has been discovered and is being actively exploited by attackers.

Interestingly, the third-party platform 0patch provided a fix for the vulnerability before it was officially fixed by Microsoft.

MOTW is a mechanism used by Windows Internet Explorer to force Internet Explorer to browse stored web pages in a secure location. In normal use, it aims to enhance access security.

But the vulnerability discovered so far allows users to block MOTW in a number of ways and avoid warning messages.

This vulnerability allows an attacker to bypass the MOTW mechanism and create a ZIP archive directly, which allows macros to remain unblocked and evade Smart App Control inspection.

It's worth noting that the bug was actually reported to Microsoft back in July, but until now Microsoft hasn't provided a fix for all Windows users.