[German]On February 14, 2023, Microsoft released security updates for Windows clients and servers, for Office, etc. – as well as for other products – released. The security updates fix 75 vulnerabilities, of which 9 are critical, 66 are important and 3 are 0-day vulnerabilities. Below is a compact overview of these updates released on patchday.
[German]Microsoft has made a few mistakes in the TCP implementation of Windows 10 and Windows 11 that severely limit the possible performance of TCP/IP connections. A blog reader brought this to my attention and immediately pointed out ways to possibly optimize something like this. I'm going to present it in a blog post for interested administrators in enterprise environments.
[German]Does Microsoft plan to extend its Office applications in Microsoft 365 with functions of the "Prometheus Model" from the OpenAI product ChatGPT-4? After the ChatGPT extension of the Bing search engine, that would be Word, Excel, PowerPoint and Outlook with corresponding AI support. At least that's what The Verge claims, and it's in line with the ideas that Microsoft chief Satya Nadella recently expressed.
[German]A German blog reader has pointed out nasty bugs in release 2301 of Microsoft Word from Office 365 or Microsoft 365. Read-only files can only be changed after saving them under a different name. And VBA addins can no longer be executed. Would be interesting if other readers can reproduce these errors.
[German]I'm picking up on a topic that has come to my attention in fragments from my blog readers as comments as well as on Twitter. I have received several reports about problems with a freezing Windows taskbar or Start button on Windows Terminal Server (RDS). Seems like another bug caused by Microsoft with the latest updates.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Starting with Microsoft Edge 110, Microsoft changes the verification of TLS certificates and decouples them from the host. In Edge 109, Microsoft has probably removed the uninstall function, and there will still be Edge support for Windows Server 2012 R2 until October. I have pulled out some topics around the Microsoft Edge.
[German]Now it's confirmed what was only hinted at before. The developers are phasing out Microsoft Support Diagnostic Tool (MSDT) support for Windows 11 (and successor versions) in 2025. The first steps will be taken starting in 2023. The reason for this move is likely to be security considerations on Microsoft's part. Here is some information about what exactly is involved.
Continue reading
[German]In mid-January 2023 month, I had pointed out a local NTLM authentication vulnerability (CVE-2023-21746) in my German blog post Nach RemotePotato0 kommt die Windows Local Potato NTLM-Schwachstelle (CVE-2023-21746). The two security researchers Andrea Pierini &anAntonio Cocomazzi refer to this as LocalPotator, but had not disclosed details at the time. Now the security researcher has disclosed the details of this vulnerability within the article LocalPotato – When Swapping The Context Leads You To SYSTEM. Microsoft has already patched this vulnerability with the January 2023 updates for Windows.
[German]The developers of the password safe KeePass have improved the new version KeePass 2.53.1 with regard to the vulnerability CVE-2023-24055. Specifically, the export function for passwords has been secured. This was preceded by a warning from the Cyber Emergency Response Team from Belgium (CERT.be) on January 27, 2023, which pointed out a vulnerability. Passwords could potentially be easily exported by a local attacker.
[German]Microsoft raised the Edge browser in the stable channel to version 110.0.1587.41 on February 9, 2023. This is a new development branch that brings new features, but is no longer supported on Windows 7 SP1, Windows 8.1 and the server counterparts. It also closes security holes. Here's an overview of what's new.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
