[German]Microsoft has released another update of the Edge (Chromium) browser with version 121.0.2277.128 in the stable channel on February 15, 2024. It is an update that closes vulnerabilities (from the Chromium browser) and fixes an import error. Continue reading
[German]On February 13, 2024, a critical vulnerability CVE-2024-21410 in Microsoft Exchange Server became public. The Elevation of Privilege vulnerability has a CVEv3 score of 9.8 and is likely to be exploited (soon). Security authorities are warning about this vulnerability. However, there was confusion among the blog readership because as of February 13, there was only CU 14 for Exchange Server 2019, which does not explicitly close the vulnerability. What about Exchange Server 2016 and what do I need to do to be protected against CVE-2024-21410? Here is a review with a rough outline.
[German]Brief question to the readership, I have received initial reports that there are also installation problems in February 2024, around the patchday on February 13, 2024. The Win RE update KB5034441 for Windows 10 fails with the installation error 0x80070643. This error has already driven hordes of users to despair in January 2024. Here is a brief overview of what I have encountered so far.
[German]On February 13, 2024 (second Tuesday of the month, Microsoft Patchday), Microsoft released several security-related updates for Microsoft Office 2016 and other products. A critical vulnerability in Outlook will be closed in February 2024. Below you will find an overview of the available updates.
Continue reading
[German]I'll pull it out again separately: In Microsoft Outlook, a CVE-2024-21413 classified as critical has been disclosed, which will be closed with the February 2024 security updates. The remote code execution vulnerability is almost trivial to exploit. Here is some more information.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Microsoft plans to hold this year's BUILD developer conference from May 21-23, 2024 in Seattle at the Seattle Convention Center. The company announced this yesterday.
[German]Google released updates to the Google Chrome browser (branch 121) in the stable channel on February 13 and 14, 2024. There were also updates for the 122 and 120 development branches. The Android and iOS app of the Chrome browser were also updated. Some of the updates contain security fixes. Here is an overview of these updates.
Continue reading
[German]Now that it is clear that the provider of remote maintenance software, AnyDesk, was the victim of a hack of its production environment in December 2023, a certificate change for the digital signing of AnyDesk clients is pending. According to my current observations, it is heading towards a "revoke chaos" – from Feb. 14, 2024, the old certificate of "philandro Software GmbH" will be invalid. Clients new signed with this old certificate should then no longer be able to run. By the way, have you noticed that the phrase "the hack took place at the end of December 2023" has also been canceled and is now referred to as "December 2023"?
[German]Various security updates for Windows Server 2012/R2 (1st ESU year) were published on February 13, 2024. Support for Windows 7 SP1 and Windows Server 2008 R2 expired in January 2024. However, updates for Windows Embedded Standard 7 can be downloaded from the Microsoft Update Catalog. Here is an overview of these updates for Windows Server 2012/R2 and Windows Embedded Standard 7.
[German]On February 13, 2024 (second Tuesday of the month, patch day at Microsoft), Microsoft also released cumulative updates for Windows 11 23H2 to 21H2. Windows Server 2022 also received an update. Here are some details about these updates, which are intended to fix vulnerabilities and problems. Continue reading
MVP:
2013 – 2016
WIMVP:
2017 – 2020
