Recent Comments

    Blogroll

    Search

    March 2019 Patch Tuesday – Known Issues

    March 14th, 2019 by

    Thanks to Michael L. Bell, MCP Lead DS Analyst II  – Security  Patch Management

    KB Article Applies To
    4489878 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489881 Windows 8.1, Windows Server 2012 R2 (Monthly Rollup)

    Symptom Workaround
    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489882 Windows 10 version 1607, Windows Server 2016

    Symptom Workaround
    For hosts managed by System Center Virtual Machine Manager (SCVMM), SCVMM cannot enumerate and manage logical switches deployed on the host after installing the update.

    Additionally, if you do not follow the best practices, a stop error may occur in vfpext.sys on the hosts.

    1. Run mofcomp on the following mof files on the affected host:
      • Scvmmswitchportsettings.mof
      • VMMDHCPSvr.mof
    2. Follow the best practices while patching to avoid a stop error in vfpext.sys in an SDN v2 environment (NC managed hosts).

     

    After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. Set the domain default “Minimum Password Length” policy to less than or equal to 14 characters.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    After installing this update, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

    Group Policy editor may also be affected when editing a Group Policy Object (GPO) that contains a Group Policy Preference for Internet Settings.

    Microsoft is working on a resolution and will provide an update in an upcoming release
    4489883 Windows 8.1, Windows Server 2012 R2 (Security-only update)

    Symptom Workaround
    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489884 Windows Server 2012 (Security-only update)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489885 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Security-only update)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release

    4489891 Windows Server 2012 (Monthly Rollup)

    Symptom Workaround
    After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    4489899 Windows 10 version 1809, Windows Server 2019

    Symptom Workaround
    After installing this update, Internet Explorer 11 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop Protocol (RDP) and Terminal Server logons. Symptoms reported by customers include, but may not be limited to:

    • Cache size and location show zero or empty.
    • Keyboard shortcuts may not work properly.
    • Webpages may intermittently fail to load or render correctly.
    • Issues with credential prompts.
    • Issues when downloading files.
    Create unique user accounts so that two people don’t share the same user account when logging on to a Windows Server machine. Additionally, disable multiple RDP sessions for a single user account for a specific Windows Server.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

    After installing this update on machines that have multiple audio devices, applications that provide advanced options for internal or external audio output devices may stop working unexpectedly. This issue occurs for users that select an audio output device different from the “Default Audio Device”. Examples of applications that may stop working include:

    • Windows Media Player
    • Realtek HD Audio Manager
    • Sound Blaster Control Panel
     

    As a temporary solution, select the “Default Audio Device” in the options provided by the application; please refer to the application’s user manual for details.

    For example, to set the Default Audio Device in Windows Media Player:

    1. Open Windows Media Player > Tools > Options > Devices.
    2. Select the device and choose Properties.
    3. On the next dialog, from the drop-down menu under Select the Audio Device, choose Default Audio Device from the list.

    You can then send audio from the application to the audio device you want in the per-application audio settings found under Settings > System > Sound > App Volume and device preferences.

    Microsoft is working on a resolution and estimates a solution will be available in late March 2019.

    After installing this update, MSXML6 causes applications to stop responding if an exception was thrown during node operations, such as appendChild(), insertBefore(), and moveNode().

    Group Policy editor may also be affected when editing a Group Policy Object (GPO) that contains a Group Policy Preference for Internet Settings.

    Microsoft is working on a resolution and will provide an update in an upcoming release.

     

    Posted in Patches, Updates | No Comments »

    Office Updates (March 2019)

    March 14th, 2019 by

    This month, there are 6 security updates

    https://support.microsoft.com/en-us/help/4462226/description-of-the-security-update-for-office-2010-march-12-2019

    https://support.microsoft.com/en-us/help/4462199/description-of-the-security-update-for-sharepoint-server-2019-march-12

    https://support.microsoft.com/en-us/help/4462211/description-of-the-security-update-for-sharepoint-enterprise-server

    https://support.microsoft.com/en-us/help/4462184/description-of-the-security-update-for-sharepoint-server-2010-march-12

    https://support.microsoft.com/en-us/help/4462208/description-of-the-security-update-for-sharepoint-foundation-2013

    https://support.microsoft.com/en-us/help/4462202/description-of-the-security-update-for-sharepoint-enterprise-server

    (Thanks, Susan Bradley)

    Posted in Patches, Updates | No Comments »

    Adobe Security Bulletins Posted

    March 14th, 2019 by

    Security Bulletins Posted

    Adobe has published security bulletins for Adobe Digital Editions and Adobe Photoshop CC. Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin.”

    Posted in Patches, Updates | No Comments »

    Patch Tuesday (March 2019)

    March 13th, 2019 by

    Patch Tuesday, March 2019 Edition

    Posted in Newsletters, Patches, Updates | No Comments »

    Microsoft: Less Malware… More Phishing

    March 5th, 2019 by

    Microsoft Sees 250% Phishing Increase, Malware Decline by 34%

    “Phishing attacks have seen an impressive 250% increase between January and December 2018, with attackers moving to multiple points of attacks during the same campaign, switching between URLs, domains, and servers when sending e-mails and hosting phishing forms.”

    Posted in Identity Theft, Malware, Phishing | No Comments »

    Security Mailer (2019 #9)

    March 3rd, 2019 by

    Security Mailer Volume 19 Number 9

    • Adobe Security
      • updates for Cold Fusion,
      • Shockwave retirement announced
    • Browsers – Mozilla updates
      • Thunderbird
      • Firefox
    • Cisco security advisories include urgent fix for Wireless-N VPN routers
    • Linux updates
    • General Security reviews last week
      • Drupal sites hacked
      • WinRAR now under active attack
      • DMA attacks

    Posted in Newsletters, Updates | No Comments »

    Security Mailer (2019, # 8)

    February 24th, 2019 by

    Security Mailer Volume 19 Number 8

    • Browsers
      • Pale Moon update
      • Firefox ESR update
    • Cisco Security Advisories
    • Linux security updates
    • Microsoft
      • Security Update revisions
      • Very important Windows 7 update coming
      • Security Advisories
    • General Security section
      • US CERT reviews last weeks vulnerabilities
      • WinRAR patches severe vulnerability affecting all releases for the past 19 years
    • VMware Security Advisories

    Posted in Newsletters, Updates | No Comments »

    TurboTax Tax Returns Exposed

    February 23rd, 2019 by

    Tax Returns Exposed in TurboTax Credential Stuffing Attacks

    “Financial software company Intuit discovered that tax return info was accessed by an unauthorized party after an undisclosed number of TurboTax tax preparation software accounts were breached in a credential stuffing attack.”

    Posted in Identity Theft, Security Breeches | No Comments »

    Adobe updates Acrobat & Acrobat Reader

    February 22nd, 2019 by

    Security Updates available for Adobe Acrobat and Reader | APSB19-13

    “Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These updates address a reported bypass to the fix for CVE-2019-7089 first introduced in 2019.010.20091, 2017.011.30120 and 2015.006.30475 and released on February 12, 2019. Successful exploitation could lead to sensitive information disclosure in the context of the current user.    ”

    Posted in Patches, Updates | No Comments »

    Security Mailer (2019 – Number 7)

    February 17th, 2019 by

    Security Mailer Volume 19 Number 7

    Posted in Newsletters, Patches, Updates | No Comments »

    « Previous Entries Next Entries »