Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Category Archives: Software
Zyxel: Security advisory for CVE-2023-28771 in firewalls
Blog reader Liam had alerted me about vulnerability CVE-2023-28771 in Zyxel firewalls via email just a few days ago (thanks for that). An April 25, 2023 post states that improper handling of error messages occurs in Zyxel ZyWALL/USG series firmware … Continue reading
SonicOS SSLVPN: CVE-2023-1101 at MFA – new firmware for Gen6 firewalls (6.5.4.12-101n)
[German]Reminder for administrators using Sonic Wall products. There is a critical vulnerability in SonicOS SSLVPN that allows an authenticated attacker to use excessive MFA codes. The vulnerability, CVE-2023-1101, received a CVSS v3 index of 4.3 from SonicWall on March 28, … Continue reading
Apache Superset: CVE-2023-27524 allows Remote Code Execution (RCE)
[German]Brief note for users who deploy Apache Superset in their environment. There is a problem in the default configuration that the software can be attacked via remote code execution vulnerability. This becomes a problem if the server is accessible via … Continue reading
Windows 11 22H2: Preview-Update KB5025305 (April 25, 2023)
[German]Microsoft has released optional cumulative (preview) update KB5025305 for Windows 11 version 22H2 as of April 25, 2023. The update distributes a number of new features/bug fixes. Below I provide an overview regarding these updates for Windows 11.
Firefox 112.0.2: Fix for Memory Leak
[German]The Mozilla developers have probably corrected the bug in Firefox 112.0.1, which led to high memory consumption with version 112.0.2. As of April 25, 2023, the maintenance update to version 112.0.2 has been released, which is supposed to fix the … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Thunderbird 102.10.1
[German]The developers of Thunderbird have released another maintenance update of the email client to version 102.10.1 on April 24, 2023 (I had not addressed 102.10.0). It's a bug fix update which should eliminate bugs.
Microsoft agrees not to bundle Teams with Office reported
[German]Microsoft is making a 180-degree turn and will no longer automatically bundle its Teams video conferencing and messaging app with its Microsoft 365 packages as an Office solution. That's reported be Financial Times. With this move, Redmond is trying to … Continue reading
Tip: GUI for Windows LAPS with history view
[German]Today a little tip for administrators in enterprise environments using Windows LAPS. German blog reader Heiko informed me on about a a graphical environment he wrote in PowerShell that lets you view Windows LAPS passwords, including password history.
Active Directory: Bug in LDAP_MATCHING_RULE_IN_CHAIN-Abfrage?
[German]It seems that there is a bug in Active Directory (AD) regarding query capabilities via LDAP_MATCHING_RULE_IN_CHAIN. This is supposed to resolve recursive groups and find users who are members. A blog reader contacted me about this and described the bug, … Continue reading
Parallels RAS licenses expire on April 24, 2023; reactivation required
[German]Brief note for administrators who use Parallels RAS (Remote Application Server). If the "big bang" breaks out on April 24, 2023 because the Parallels RAS refuses to work, it's probably not your fault. It looks like the vendor "screwed up" … Continue reading