Category Archives: Software

Issues with Microsoft Outlook (scheduling) since March 2024 patchday? – Part II

[German]Blog reader Steffen has contacted me by email because he is seeing issues and problem reports from users of Microsoft Outlook in connection with the scheduling wizard. It affects different versions of Outlook and he is wondering whether other readers … Continue reading

Posted in issue, Office, Software | Tagged , | Leave a comment

Advertising

Deprecated: Test Base, special TLS authentication certificates, Visual Studio App Center

[English]Another brief information: Microsoft has announced the discontinuation of Visual Studio App Center this week. Furthermore, features such as Test Base (Azure) and TLS server authentication certificates with less than 2048 bits were classified as "deprecated" and discontinued for March … Continue reading

Posted in Software, Windows | Tagged , | Leave a comment

How to find weak passwords in Active Directory and eliminate them with PowerShell

[Sponsored Post]Weak or compromised passwords are a known gateway for attackers. If you are able to identify which users in Active Directory (AD) are threatened by this, then PowerShell can help to remedy it. However, PowerShell scripts cannot eliminate basic AD deficits, other tools are needed for this. More ...

Edge 122.0.2365.92

[German]Microsoft has released another update of the Edge (Chromium) browser to version 122.0.2365.92 in the stable channel on March 14, 2024. It is a security and maintenance update that fixes bugs ("Fixed various bugs and performance issues.). Vulnerabilities have also … Continue reading

Posted in browser, Security, Software, Update | Tagged , , | Leave a comment

Advertising

.NET-Updates (March 2024)

Small addendum from the March 2024 patch day on March 12. On this occasion, Microsoft also released updates to .NET 8.0.3, .NET 7.0.17 and .NET 6.0.28, which are intended to eliminate vulnerabilities. Our colleagues at deskmodder.de have linked the respective … Continue reading

Posted in Security, Software, Update | Tagged , | Leave a comment

Fortinet: SQL injection vulnerability in FortiClientEMS 7.2

Fortinet has released a security update for its FortiClientEMS on March 12, 2024, as a critical SQL injection vulnerability exists in versions 7.2.0 to 7.2.2. The vulnerability CVE-2023-48788  has received an SVSSv3 score of 9.3. According to this security advisory, … Continue reading

Posted in Security, Software | Tagged | Leave a comment

Advertising

Exchange Server security updates (March 12, 2024)

[German]Microsoft has released security updates for Exchange Server 2016 and 2019 on March 12, 2024. These updates fix security vulnerabilities reported to Microsoft by security partners and found by Microsoft's internal processes. According to Microsoft, the updates should be installed … Continue reading

Posted in Security, Software, Update | Tagged , , , | Leave a comment

Microsoft Security Update Summary (March 12, 2024)

[German]On March 12, 2024, Microsoft released security updates for Windows clients and servers, for Office – and for other products. The security updates eliminate 73 vulnerabilities (CVEs), two of which are 0-day vulnerabilities that are already being exploited. Below is … Continue reading

Posted in Office, Security, Software, Update, Windows | Tagged , , , , | Leave a comment

Microsoft Outlook RCE vulnerability CVE-2024-21378; patched in February 2024

[German]On February 13, 2024, the remote code execution vulnerability CVE-2024-21378 in Microsoft Outlook was also closed with the security updates. As of March 11, 2024, an in-depth analysis of the vulnerability has now been published, as I saw in a … Continue reading

Posted in Office, Security, Software, Update | Tagged , , | Leave a comment

Advertising

Critical vulnerability CVE-2024-21899 allows QNAP NAS access without authentication

[German]Owners of QNAP NAS drives are at risk from the critical vulnerability CVE-2024-21899. This allows access to devices without requiring authentication via username and password. The manufacturer has released security updates to its vulnerable operating systems to close the vulnerability. … Continue reading

Posted in devices, Security, Software, Update | Tagged , , , | Leave a comment

Critical vulnerabilities in VMware products (March 5, 2024)

[German]A short addendum from last week. I recently reported on updates to VMware products. VMware has now classified certain vulnerabilities in its virtualization products as critical in a security advisory. It should therefore be patched quickly, if not already done. … Continue reading

Posted in Security, Software, Update, Virtualization | Tagged , , | Leave a comment