[German]Another addendum from the December 2021 patchday regarding the AppX installer used in Windows. Microsoft has closed the Windows AppX Installer spoofing vulnerability CVE-2021-43890 with an update. The Emotet gang has been trying to exploit this vulnerability to infect systems – I had reported about it here on the blog. Here's a brief overview about that issue.
[German]Currently, owners of Internet routers – especially FRITZ!Box routers – are noticing recurring login attempts on their devices. At least, some readers have contacted heise with corresponding observations. And also during a short research I came across postings reporting access attempts from an IP 193.46.255.150 of the Dutch hoster Peenq. Here is a brief overview of this topic.
[German]On December 14, 2021 (second Tuesday of the month, Patchday at Microsoft), Microsoft has also released a cumulative update for Windows 11, which was released on October 5, 2021. The update is supposed to fix various issues. Here are some details about this update.
[German]On December 14, Microsoft has released various updates for Windows 7 SP1 systems that are still in ESU support. Also with ESU Bypass v11 the whole thing still works. But these security updates are also available for Windows Server 2008 R2 with ESU support. Here is some information about the Monthly Rollup and Security only Updates for this operating system.
[German]On December 14, Microsoft released various updates for Windows 8.1. However, these security updates are also available for Windows Server 2012 R2. Here is some information on the Monthly Rollup and Security only updates for these operating systems.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]On December 14, 2021 (second Tuesday of the month, Microsoft Patchday), Microsoft has released several security-related updates for still supported Microsoft Office versions and other products. An RCE vulnerability in Excel is closed again. For Microsoft Access, however, an update causes massive problems. Here you can find an overview of the available updates. Continue reading
[German]On December 14, 2021 (second Tuesday of the month, Patchday at Microsoft), various cumulative updates for the supported Windows 10 builds (from RTM version to the current version) were released. Here are some details about each of the Patchday security updates.
[English]Microsoft has updated the Edge browser to version 96.0.1054.57 as of December 14, 2021. The release notes refer to the fix for the vulnerability CVE-2021-4102 mentioned by the Chromium team. This is already being exploited. The browser should be updated automatically, but can also be downloaded here.
[German]On December 14, Microsoft released security updates for Windows clients and servers, for Office etc. – as well as for other products (but not for Exchange) – were released. Below is a compact overview of these updates released on Patchday.
Short message about Microsoft Exchange Online. Yesterday there seem to have been disturbances that affected users of Exchange Online. Mails that were supposed to be sent via Exchange Online are delayed or get stuck as draft or to be sent.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
