Oracle has just released a critical patch for a vulnerability in WebLogic Server Web Services. CVE-2019-2729 fixes a deserialization vulnerability via the XML decoder in Oracle WebLogic Server Web Services. This remote code execution vulnerability can be exploited remotely without authentication, i.e. it can be exploited over a network without requiring a username and password. Link 1, Link 2 (via Tweet of @PhantomofMobile).
Google released an update to the Google Chrome 75.0.3770.100 last night, which probably contains some bug fixes. There is also a new Chrome extension called 'Suspicious Site Reporter' which was released also by Google.
[German]A few days ago the Mozilla developers had released the update to version 67.0.2 for the browser. On 18 June 2019, a security update to Firefox version 67.0.3 has been released. It's recommended to update as soon as possible.
[German]The company warns customers about worm attacks on Exim servers hosted on Microsoft Azure. This is due to vulnerabilities recently discovered in Exim servers.
[English]A brief information: An update to WordPress 5.2.2 has been released this night. Its a maintenance update, and one of my blogs has been updated automatically, my multisite blog here have to be updated manually.
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
[German]Users who want to upgrade to Windows 10 version 1903 may get an error message with the code 0xc190012e. Here is a rough overview, whereby I cannot name any cause for the error at the moment. There is only a suspicion, it could be SSD related.
Brief information for administrators and users who need an overview of known vulnerabilities in software. The US CISA (part of Homeland Security) publishes a weekly compilation.
[German]In Windows 10 May 2019 Update (version 1903) and possibly also in October 2018 Update (version 1809) there is a bug in the 'Default Switch' which leads to issues with Windows Sandbox, Mobile Hotspot or with Windows Containers – they do not work. The reason for this is that the default switch probably does not get an IP address. The reason are updates from Windows 10 and from the hardware manufacturer's system updater. But there is a workaround.
[German]Administrators using the Essentials Connector should be careful with upgrading to Windows 10 May 2019 Update (Version 1903). The update will prevent you from connecting to a Windows Essentials server afterwards. However, there is a workaround to fix the Essentials Connector again.
[German]Antivirus vendor Bitdefender has released an updated version of its decryption tool for the malware GandGrab. Helps to get encrypted data back if necessary.
MVP:
2013 – 2016
WIMVP:
2017 – 2020
