Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Software
Sophos Intercept X Install or Update ends with HTTP Error 403 (May 6, 2022)
[German]Brief information for administrators of a Sophos Intercept X endpoint solution. The vendor seems to be informing its customers about a serious problem. After a fresh installation of Sophos Intercept X Endpoint for Windows or an update, sus.sophosupd.com is no … Continue reading
10-year-old vulnerabilities in Avast and AVG put millions of users at risk
[German]Security researchers at Sentinel One have discovered two serious vulnerabilities in Avast and AVG's security products that have been around for 10 years and put millions of users at risk. The vulnerabilities are in Avast's anti-rootkit driver (which is also … Continue reading
7-Zip vulnerability CVE-2022-29072 *doesn't* allows system privileges
[German]A vulnerability CVE-2022-29072 (heap overflow) exists in the 7-Zip application up to version 21.07, which allows privilege escalation on Windows. This could allow an attacker to gain system privileges and then compromise the system at will. Here is some information … Continue reading
Comments on NGINX vulnerabilities in LDAP reference implementation (April 2022).
[German]On April 9, 2022, 0-day exploit exploiting vulnerabilities in LPAP NGINX implementation became known. Spontaneously the question came up if you have to react now if you use NGINX in your environment. A blog reader sent me a note the … Continue reading
Adobe Acrobat (Reader): DC 2022.001.20117/22.001.20112 – and End of Support for 2017 Classic
[German]Adobe is releasing a security update for Adobe Acrobat (Reader) DC to version 22.001.20117 (Windows) and 22.001.20112 (Mac) on April 12, 2022. The description can be found at APSB22-16.
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
End of support for .NET Framework 4.5.2, 4.6, and 4.6.1 on April 26, 2022
[German]In an announcement dated April 4, 2022, Microsoft announced the end of support for .NET Framework 4.5.2, 4.6 and 4.6.1 on April 26, 2022. After that, there will be no more (security) updates. Users running the runtime in question should … Continue reading
Citrix ADV Virtual Appliance 13.0.85 is breaking Gateway-Service
Short information for administrators of Citrix systems. Citrix ADV Virtual Appliance 13.0.85 seems to cause problems with Citrix Gateway Services. After importing the VPX and configuring the ADC, the Citrix Gateway login page (ICA proxy) may not be accessible.
Vulnerability in Windows 3CX telephone systems
[German]Anyone running a 3CX system (telephone system) under Windows in a version below v18 Update 3 (Build 450) should react. The manufacturer has released a security update for this product in the form of v18 Update 3 (Build 450).
Critical vulnerabilities in Veeam Backup & Replication
[German]Veeam has issued a security alert warning of critical vulnerabilities in Veeam Backup & Replication. Attackers could use these vulnerabilities to take over systems running Linux or Windows. German blog reader der Seb posted the links to the relevant Veeam … Continue reading
McAfee Total Protection Update fixes CVE-2022-0280
[German]McAfee has released a security alert and update for McAfee Total Protection. The update fixes the CVE-2022-0280 vulnerability, which is rated high. A vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to version 16.0.43 that … Continue reading