Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Security
Unpatched vulnerability in GhostScript interpreter
[German]A major vulnerability in the GhostScript interpreter has just went public. There is no patch yet. The vulnerability may allow the victim's machine to be taken over. Here is some information on this topic, since GhostScript is included in some … Continue reading
Vulnerabilities in Microsoft Visual C++ Runtime
[German]Here is another hint to vulnerabilities buried in software packages from Microsoft. The Visual C++ runtime packages (VC redistributable) provided by Microsoft are assembled to installer packages with outdated (vulnerable) WiX Toolkit versions.
Microsoft Visual Studio 2015 Update 3 security patch
If someone still uses Microsoft Visual Studio 2015 Update 3, they should install a security update. Microsoft has just issued an update notification.
SQL Server 2016 SP2: Update KB4293807 pulled
[German]A brief information for administrators: Microsoft released the security update KB4293807 for SQL Server 2016 SP2 on August 14, 2018. But this update has already been pulled. Addendum: Update revision KB4458621 has been released on August 19, 2018.
Posted in Security, Update
Tagged 0x80070643, Error, KB4293807, SQL Server 2016 SP2; Update
1 Comment
Windows 10 and the OneDrive vulnerabilities – Part 3
[German]In Part 1 and Part 2 of my article series I described the vulnerabilities in Microsoft's OneDrive client (addressing the location of program files in the unprotected profile folder and the use of outdated open source libraries with known vulnerabilities). … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Windows 10 and the OneDrive vulnerabilities – Part 2
[German]In part 1 of my article series about vulnerabilities in OneDrive client I mentioned, the location of the program files in the unprotected profile folder. But Microsoft developers have made further mistakes, such as using outdated open source libraries with … Continue reading
Windows 10 and the OneDrive vulnerabilities – Part 1
[German]This article is about the OneDrive client that Microsoft delivers with Windows 10. The way, how Microsoft's developers has implemented this client, leaves several vulnerabilities. Here are a few details about an investigation.
Firefox Addon Stylish is back ….
[German]Dead ones live longer. The Stylish addon, with which you can give websites their own style, is back for Firefox. Great development, here's some background information you need to know.
Firefox addon Web Security transfers private data
[German]It isn't a nice story so far: Mozilla's developers have recommended the addon Web Security for a short time to protect privacy and to secure the browser. However, this addon transmits the URLs and other (possibly private or sensitive) data … Continue reading
Microsoft Security Advisory Notification (August 14, 2018)
On August 14, 2018, Microsoft published two more Security Advisory Notifications dealing with the newly discovered vulnerabilities (L1TF). Addendum: Security Advisory from August 15, 2018 added.