[German]Microsoft's July 11, 2023 security update KB5028166 seems to be turning into a problem bear. I have already been contacted by two pages from the readership, who report hints of different problems with third-party security solutions, NAS drives or similar. So I'm picking up new issues, since I hadn't cover it in part I.
Brief information for people who use Foxit PDF Reader and/or PDF Editor. There are vulnerabilities in older versions which will be fixed by a security update to version 12.1.3.15356 (thanks to the reader for reminding me). Details can be found in this Foxit security advisory. The colleagues from deskmodder.de have collected the relevant links – also for download – here. Does anyone from the readership use these products?
[German]On Patchday, July 11, 2023, Microsoft released a bunch of security updates for Windows, Office and other products. In addition, a vulnerability in the HTML component of IE became known, which could allow an RCE attack on Office and Windows with system takeover. There is no patch for this, only countermeasures for protection. And some readers complain about issues after the update, among other things because Kerberos hardening measures take effect since July 2023 and can no longer be disabled. Here is part 1 of a follow-up on these issues.
There is a vulnerability in the firmware of the TP-Link router TP-LINK TL-WR840N that allows a remote attacker to perform a stack buffer overflow DOS attack. TP-Link does not want to publish a security advisory for this, but has made a new firmware (TL-WR840N(KR)_V6.2_230702) available on this website. The team at ssd-disclosure.com has disclosed details about the vulnerability in this blog post.
[German]I'm posting a problem here in the blog that a reader reported by email. The Windows user regularly receives files with the file name extension .checkpoint and (presumably) a UUID code as the file name in the Windows System32 folder. This is a Windows 10 22H2 system and the files can also be deleted. Is there an explanation, what these files are meaning?
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]At the suggestion of the U.S. National Security Agency (CISA), Microsoft will provide its customers with enhanced cloud logging capabilities at no additional cost. This is intended to improve cyber defenses and incident response and is in response to the successful attack by Chinese hackers (Storm-0558) on Outlook Online accounts, which only attracted the attention of a U.S. agency because of such logging capabilities.
[German]As of July 18, 2023, the developers of Virtualbox have released both version7.0.10 and the update to version 6.1.46. Both versions are maintenance updates for bug fixes.
[German]The security update KB5002427 for Outlook 2016 from July 11, 2023 (as well as the Click-2-Run updates of Office from the same date) cause an unpleasant bug. If the user wants to open links in Outlook 2016, the program displays a security notice. The links simply no longer work. The solution I know so far is to uninstall update KB5002427 (or the latest Office 365 build).
[German]Google has released updates to the Google Chrome browser 115 in the stable channel for Mac, Linux and Windows on July 18, 2023. They are security updates that will be rolled out in the coming weeks and should fix 20 vulnerabilities.
[German]Brief warning to administrators of Citrix NetScaler ADC and Citrix Gateway. The vendor has issued a security advisory warning of a critical remote code execution vulnerability in the products. The vendor has released updates for the affected products, which administrators should apply immediately to the installations they support.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
