I glanced at the article and I didn’t see a solution to the vulnerability. It is easy to fix. Since, this occurs on NTFS volumes, change the security associated with the command prompt, cmd.exe, to only allow administrators to execute. I believe you can explicitly exclude access by non administrator account. This should be done to other utilities as well. Additionally, do not do every day work on an account administrator account. Sign on as Administrator when you do admin work, then sign off.
What's worse is, the vulnerability can be triggered by standard and low privileged user accounts...I haven't test it myself, of course...
“change the security associated with the command prompt, cmd.exe, to only allow administrators to execute.”
won’t work since Windows makes user accounts administrators by default ... almost no regular users have any idea how to make non-administrator accounts .