driver Archives

AppWizard

May 17, 2025

The RTX 5060 is cheap, but can it game? We played 5 titles to find out

Nvidia's GeForce RTX 5060 is set to release on May 19 with a starting price of 9. It features 8GB of video memory, which may be insufficient for demanding games like Indiana Jones and the Great Circle that require at least 12GB of VRAM. Preliminary testing at 1080p showed the RTX 5060 Ti performing well in five titles, often meeting or exceeding Nvidia's performance claims, particularly within optimized conditions for Nvidia GPUs. The card benefits from DLSS 4, enabling impressive frame rates even at 1440p, with frame rates exceeding 200 FPS in demanding scenarios. Texture pool sizes during tests were around 1.5GB, indicating effective use of neural rendering techniques. However, Cyberpunk 2077's benchmarking tool did not accurately reflect performance due to pre-release drivers. Users may face challenges with DLSS override settings in the Nvidia app, requiring manual adjustments for optimal performance. Despite these hurdles, the RTX 5060 shows promise for a smooth gaming experience, though concerns about the adequacy of its 8GB VRAM remain.

AppWizard

May 17, 2025

‘Murderbot,’ ‘The Brutalist,’ ‘A Minecraft Movie,’ ‘Duster,’ and the best to stream this weekend

Apple TV+ has released a new sci-fi series titled "Murderbot," adapted from Martha Wells’ "Murderbot Diaries." The show features Alexander Skarsgård as a self-aware cyborg tasked with protecting scientists on an uninhabited planet while secretly binge-watching a space opera. The first two episodes are now available for streaming. FX's "Welcome to Wrexham," a docuseries about a Welsh football club owned by Ryan Reynolds and Rob McElhenney, returns for its fourth season on Hulu. " Duster," an action drama set in the 1970s, stars Josh Holloway and is now streaming on Max. Amazon's "Overcompensating," a college comedy created by and starring Benito Skinner, follows a closeted freshman and his outsider friend on a journey of self-discovery, with all eight episodes available on Prime Video. "The Brutalist," a historical drama starring Adrien Brody, is now streaming on Max after winning three Academy Awards. The Apple TV+ documentary "Deaf President Now!" recounts a 1988 protest at Gallaudet University for a Deaf president, directed by Nyle DiMarco and Davis Guggenheim. "The Quilters," a documentary short about incarcerated men making quilts for foster children, is available on Netflix. The "Minecraft Movie," featuring Jack Black, is now available for purchase on Amazon. Disney's live-action "Snow White" can now be watched on VOD platforms despite previous controversies surrounding its production.

Winsage

May 15, 2025

Windows Remote Desktop Vulnerability Let Attackers Execute Malicious Code Over Network

Microsoft's May 2025 Patch Tuesday addressed 72 vulnerabilities in Windows Remote Desktop services, including two critical vulnerabilities, CVE-2025-29966 and CVE-2025-29967, which are heap-based buffer overflow issues. These flaws allow unauthorized attackers to execute arbitrary code over a network, posing significant risks. The vulnerabilities have been rated as "Critical" and classified under CWE-122. They affect various versions of Windows operating systems utilizing Remote Desktop services. Although there have been no reported active exploitations, experts warn of the potential dangers, urging users to apply patches immediately. The update also addressed five actively exploited zero-day vulnerabilities in other Windows components. Patches are available through Windows Update, WSUS, and the Microsoft Update Catalog.

Winsage

May 14, 2025

Microsoft’s ‘Patch Tuesday’ Update Fixes Seven Zero-Day Exploits

Microsoft's latest Patch Tuesday update addresses 72 security vulnerabilities, including five critical zero-day vulnerabilities. Four of these zero-days are elevation of privilege flaws: - CVE-2025-32701 and CVE-2025-32706 target the Windows Common Log File System Driver. - CVE-2025-30400 affects the Microsoft DWM Core Library. - CVE-2025-32709 involves the Windows Ancillary Function Driver for WinSock. These vulnerabilities allow attackers to gain SYSTEM privileges locally. The fifth zero-day, CVE-2025-30397, is a remote code execution vulnerability in the Microsoft Scripting Engine, which can be exploited through malicious links in Microsoft Edge or Internet Explorer. CVE-2025-30397, CVE-2025-32701, and CVE-2025-30400 were discovered by the Microsoft Threat Intelligence Center, while CVE-2025-32706 was disclosed by the Google Threat Intelligence Group and CrowdStrike, and CVE-2025-32709 was reported by an anonymous researcher. Additionally, a publicly disclosed spoofing flaw in Microsoft Defender, CVE-2025-26685, allows unauthenticated attackers with local network access to impersonate another account. The final zero-day, CVE-2025-32702, is a remote code execution vulnerability in Visual Studio.

Winsage

May 14, 2025

Microsoft Confirms Windows Is Under Attack — You Must Act Now

Microsoft has confirmed multiple zero-day vulnerabilities being actively targeted by malicious actors. One significant vulnerability is CVE-2025-30397, a memory corruption flaw in the Windows scripting engine that affects all versions of Windows and allows code execution over the network. It has a CVSS score of 7.8 and is considered critical. Successful exploitation requires the target to use Edge in Internet Explorer Mode and for the user to click a malicious link. Other vulnerabilities include: - CVE-2025-32709: An elevation of privilege vulnerability in the Windows ancillary function driver for WinSock, affecting Windows Server 12 and later. - CVE-2025-32701 and CVE-2025-32706: Vulnerabilities in the Windows Common Log File Driver System that could allow local attackers to gain system privileges, affecting all versions of Windows. - CVE-2025-30400: An elevation of privilege vulnerability in the Windows desktop window manager, affecting Windows 10, Server 2016, and later OS versions. Windows users are urged to update their systems with the latest security patches immediately.

Winsage

May 14, 2025

Microsoft’s Patch Tuesday closes 72 vulnerabilities, including 5 zero-days

Microsoft has addressed 72 vulnerabilities in a recent update, including five classified as zero-days. This is the eighth consecutive month that Microsoft has tackled zero-day vulnerabilities without any being categorized as critical at the time of disclosure. The identified zero-days include CVE-2025-30397, CVE-2025-30400, CVE-2025-32701, CVE-2025-32706, and CVE-2025-32709, with CVSS scores ranging from 7.5 to 7.8. Two of these vulnerabilities are related to the Windows Common Log File Driver System (CLFS), which has been frequently targeted for exploitation. The Cybersecurity and Infrastructure Security Agency (CISA) has added all five zero-days to its Known Exploited Vulnerabilities (KEV) list. Experts suggest that some zero-day exploits may be linked to targeted espionage or financially motivated activities, including ransomware deployment. Additionally, Microsoft's update includes five critical vulnerabilities and 50 high-severity defects, with 18 vulnerabilities impacting Microsoft Office and three deemed “more likely” to be exploited. Eight vulnerabilities patched this month are considered “more likely” to be exploited, including two high-severity defects in Microsoft SharePoint Server.

Winsage

May 13, 2025

Announcing Windows 11 Insider Preview Build 26120.3964 (Beta Channel)

Windows 11 Insider Preview Build 26120.3964 (KB5058496) has been released for the Beta Channel, specifically for Windows 11, version 24H2. Users on version 23H2 can choose to upgrade to version 24H2 with this build. The update introduces a new AI-powered agent in Settings for easier navigation and task automation, currently available for Snapdragon-powered Copilot+ PCs, with support for AMD and Intel PCs coming soon. Enhanced intelligent text actions have been added to Click to Do for AMD and Intel-powered Copilot+ PCs, allowing users to summarize, create bulleted lists, or rewrite text. A dedicated FAQs section has been added to the Settings > System > About page. Several fixes have been implemented, including improvements to the Start menu, File Explorer, and voice access. Known issues include problems with PC reset display and Xbox Controller connectivity. Entra ID support for AI features in Paint and Notepad has been rolled out for IT-managed PCs.

Winsage

May 13, 2025

Announcing Windows 11 Insider Preview Build 26200.5600 (Dev Channel)

Windows 11 Insider Preview Build 26200.5581 (KB5058493) has been released to the Dev Channel. New features include enhanced intelligent text actions in Click to Do for AMD and Intel™-powered Copilot+ PCs, allowing users to Summarize, Create a bulleted list, or Rewrite text. These features are available when the default language is English and at least 10 words are selected. For users with French or Spanish as their primary language, only Summarize, Create a bulleted list, and Refine options are temporarily available. Improvements include the ability to safely remove devices compatible with Dynamic Lighting and the introduction of a FAQs section in Settings to help users find information about their PC. Fixes have been made to the Start menu, File Explorer, Voice Access, Taskbar, Windows Spotlight, and Live captions. Known issues include problems with the PC reset option and Xbox Controller connectivity. Entra ID support for AI features in Paint and Notepad has been rolled out for IT-managed PCs, allowing access to tools like Cocreator and Generative Fill in Paint, and summarization or rewriting in Notepad. Windows Insiders in the Dev Channel receive updates based on Windows 11, version 24H2, and features may evolve or be removed based on feedback.

Winsage

May 12, 2025

Microsoft Releases Detailed Guide to Fix Windows Blue Screen Errors

Microsoft has released an official guide to address the Blue Screen of Death (BSOD) issues in Windows 11 and Windows 10, updated on May 11, 2025, following a significant global outage in July 2024 caused by a problematic CrowdStrike update. The guide categorizes troubleshooting into basic and advanced steps, highlighting common error codes like PAGEFAULTINNONPAGEDAREA (0x00000050). Approximately 75% of stop errors are attributed to faulty drivers, making driver verification essential. Basic troubleshooting includes removing recently added hardware, booting into Safe Mode, checking Device Manager for problematic components, ensuring 10-15% free disk space, installing the latest Windows Updates, and using System Restore. Advanced troubleshooting involves using Event Viewer, running Windows Memory Diagnostics, and analyzing memory dumps with WinDbg. The guide emphasizes the resource-intensive nature of Driver Verifier and suggests testing suspicious drivers in smaller groups. It also includes hardware-specific troubleshooting tips, such as checking for overheating components and performing disk diagnostics with the “chkdsk” command.

Winsage

May 12, 2025

Microsoft Defender Discovers Zero-Day Vulnerability in Windows CLFS

The deployment of PipeMagic preceded a sophisticated exploit targeting the Common Log File System (CLFS) kernel driver, initiated from a dllhost.exe process. The exploit began with the NtQuerySystemInformation API, which leaked kernel addresses to user mode. In Windows 11, version 24H2, access to specific System Information Classes within this API was restricted to users with SeDebugPrivilege, rendering the exploit ineffective on this version. The exploit then used a memory corruption technique with the RtlSetAllBits API to overwrite its process token with 0xFFFFFFFF, granting it all available privileges and enabling process injection into SYSTEM-level operations. A CLFS BLF file was created at C:ProgramDataSkyPDFPDUDrv.blf, marking the exploit's activity.