Microsoft has released Intel firmware updates for all supported versions of Windows 10 that protect against attacks that exploit Microarchitectural Data Sampling (MDS) vulnerabilities
On May 14, 2019, Intel uncovered a new vulnerability group in its processors, which it calls “microarchitectural data sampling” – “Microarchitectural Data Sampling” (MDS) or ZombieLoad. Vulnerabilities are associated with speculative execution attacks, such as Specter or Meltdown, discovered last year. This issue affects all modern Intel processors on servers, desktops and laptops.
Full protection against Intel ZombieLoad vulnerabilities could result in 40% performance loss.
Microsoft has released Intel Firmware Updates for Windows 10
On May 18, 2019, Intel firmware updates became available for devices running all supported versions of Windows 10:
- KB4497165 – for Windows 10, version 1903
- KB4494174 – for Windows 10, version 1809
- KB4494451 – for Windows 10, version 1803
- KB4494453 – for Windows 10, version 1703
- KB4494175 – for Windows 10, version 1607
- KB4494454 – for Windows 10, version 1507
Firmware updates are designed for certain models of Intel processors, which with this update will protect against the exploitation of the following vulnerabilities:
- CVE-2019-11091 – Microarchitectural Data Sampling Uncacheable Memory (MDSUM)
- CVE-2018-12126 – Microarchitectural Store Buffer Data Sampling (MSBDS)?
- CVE-2018-12127 – Microarchitectural Load Port Data Sampling (MLPDS)
- CVE-2018-12130 – Microarchitectural Fill Buffer Data Sampling (MFBDS)
MDS Tool: Check your computer for vulnerability attacks Microarchitectural Data Sampling (Intel ZombieLoad)
Updates KB4497165, KB4494174, KB4494451, KB4494453, KB4494175, KB4494454 are available for manual download in the Microsoft Update Catalog:
Windows Server 2016 download update Windows Server 2019 download update