Blogs
Links
Archives
Categories
Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Sponsors
(Paypal-Donations)Recent Comments
- EP on Edge version 124.0.2478.51 causes issues with http pages
- GM on Windows Server 2016: AD problems after updates KB5034862 and KB5034767 (Feb. 2024)
- José Roberto on Google account blocked and police action because of toddler photos for the doctor
- Anonymous on WSUS displays all Windows 11 clients as Windows 10 Enterprise
- GordK on Windows 10: Workaround for jumping explorer view
Meta
Recent Comments
- EP on Edge version 124.0.2478.51 causes issues with http pages
- GM on Windows Server 2016: AD problems after updates KB5034862 and KB5034767 (Feb. 2024)
- José Roberto on Google account blocked and police action because of toddler photos for the doctor
- Anonymous on WSUS displays all Windows 11 clients as Windows 10 Enterprise
- GordK on Windows 10: Workaround for jumping explorer view
Archives
Categories
Meta
Tag Archives: Software
VMware vCenter vulnerability CVE-2023-34048 – many systems vulnerable
There is an out-of-bounds vulnerability CVE-2023-34048 in VMware vCenter that leaves systems vulnerable. A security researcher scanned the Internet for accessible and unpatched instances and found numerous systems. Administrators of VMware vCenter installations should ensure systems are patched. Advertising
Advertising
Vulnerability CVE-2023-5363 in OpenSSL
[German]A vulnerability CVE-2023-5363 was found in the OpenSSL software. The initialization of the encryption key length and the initialization vector in OpenSLL is incorrect. However, a fix is already available for the Linux distributions Debian and Ubuntu. Advertising
How to find weak passwords in Active Directory and eliminate them with PowerShell
[Sponsored Post]Weak or compromised passwords are a known gateway for attackers. If you are able to identify which users in Active Directory (AD) are threatened by this, then PowerShell can help to remedy it. However, PowerShell scripts cannot eliminate basic AD deficits, other tools are needed for this. More ...
Cisco: New 0-day vulnerability (CVE-2023-20273) in IOS XE; already being exploited
[German]US vendor Cisco has publicly disclosed another 0-day vulnerability (CVE-2023-20273) in IOS XE as of October 20, 2023. This vulnerability is already being exploited in the wild to compromise systems. The vendor plans to provide fixes for the CVE-2023-20198 and … Continue reading
Advertising
VMMap v3.4 released
As of October 17, 2023 VMMap v3.4 has been released in Sysinternals Tools. VMMap is a utility for analyzing virtual and physical process memory on Windows. Advertising
Over 32,000 Cisco components compromised via CVE-2023-20198 vulnerability
[German]Short note for users who have Cisco components with IOS XE in use and these components are accessible via the Internet. As of October 16, 2023, Cisco issued a security warning about the 0-day vulnerability CVE-2023-20198, which is unpatched so … Continue reading
Advertising
Warning: WinRAR vulnerability CVE-2023-38831 is exploited by Chinese and Russian hackers
[German]Warning to users of the WinRAR archive program. Various state threat actors from Russia and China are trying to exploit a vulnerability in the WinRAR archiving tool for Windows. Attackers can execute arbitrary code when unpacking archives via the CVE-2023-38831 … Continue reading
Sonicwall: Security updates for SonicOS close nine vulnerabilities
In SonicOS there are several vulnerabilities (buffer overflows) that have received a CVSS index of up to 7.7. Sonicwall has therefore released software updates for SonicOS for their firewalls, that close new vulnerabilities (CVE-2023-39276, CVE-2023-39277, CVE-2023-39278, CVE-2023-39279, CVE-2023-39280, CVE-2023-41711 and … Continue reading
Citrix NetScaler ADC and Gateway vulnerabilities (CVE-2023-4966 and CVE-2023-4967)
[German]There are serious vulnerabilities in older products from Citrix, as the manufacturer announced in a security alert. Both the Citrix NetScaler ADC and the Citrix NetScaler Gateway are affected by the vulnerabilities CVE-2023-4966 and CVE-2023-4967. An update is urgently recommended, … Continue reading
Advertising
AI in medicine, questions and answers from Stanford
How will or can generative AI find its use in the medical field and what are the potentials as well as risks with this technology? In the USA, scientists are also dealing with this topic. Among them is the dean … Continue reading
Lancom (R&S) Firewalls (UF-xxx) no longer get signature updates from Oct. 1st till 4th 2023
[German]German blog reader Uwe Kernchen has just pointed out to me an issues that users and administrators of Lancom firewalls (also offered by Rhode & Schwarz) have hade. Since October 1, 2023, the UF-xxx firewalls no longer receive signature updates. … Continue reading
