Your company's ad could live here and reach over 50,000 people a month!

Patch Management

Office Non-Security Update Releases for May 2017

Its the first week of the month, so Microsoft has delivered its first set of monthly updates – but they were overshadowed a bit by the big Education announcement event in NYC. The first week of each month is generally set aside for Office bug fix updates – with the second week of the month for security fixes. Here’s the updates available now for Office… Office 2010 Update for Microsoft Office 2010 (KB3128031) Update for Microsoft Outlook 2010 (KB3191906)   Office 2013 Update for Microsoft Excel 2013 (KB3191877) Update for Microsoft Outlook 2013 (KB3191889) Update for Microsoft PowerPoint 2013 (KB3191871) Update for Microsoft Project 2013 (KB3191878) Update for Microsoft Visio 2013 (KB3178711) Update for Skype for Business 2015 (KB3191873) Update for Skype for B...

Microsoft to Deliver Monthly Non-security Cumulative Updates for Windows 10 Creators Update

With Windows 10, Microsoft moved a cumulative update (CU) model where all security fixes are bundled together and delivered during Patch Tuesday, but these security CUs also contained other fixes. Michael Niehaus has now revealed on his blog (New Update Options for Windows 10 1703) that Microsoft will be separating security fixes from general improvement fixes and delivering each as separate CUs. So, now instead of an all or nothing scenario, customers can choose to deploy security patches and then deliver non-security CUs later. In WSUS, these will also be labeled separately as Security Updates and just Updates. Michael says this will give organizations the flexibility of choice to… Deploy each of them just like the updates on “Update Tuesday.” This enables the organization’s PCs to...

Microsoft Security Response Center PowerShell Module

The Microsoft Security Response Center module gets Microsoft Security Update details and CVRF (Common Vulnerability Reporting Format) documents in either JSON or XML. This module calls the MSRC API (api.msrc.microsoft.com) which requires an API key from: https://portal.msrc.microsoft.com Download: MsrcSecurityUpdates Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!

Microsoft Hears Customer Complaints, Rolling Out Updates to Security Update Guide

When Microsoft decides to make changes in the way it disseminates important information to customers – particularly when that information was a trusted source for security – customers get angry. Such is the case with Microsoft’s recent changes to how it distributes security update information. In November of last year, Microsoft announced that it would end how it distributed security patch information. The company said that it would stop using the old format and would migrate to the new Security Updates Guide which is located here: https://portal.msrc.microsoft.com/en-us/security-guidance Many in the customer community have complained about this change. Some have started to petition the software company to bring back the old ways of supplying information. If a recent anno...

Understanding and Implementing Patch Management

Learn various best practices and common questions associated with Patch Management. See a live demo in action of setup, configuration, as well as testing and deployment phases. Understanding and Implementing Patch Management from Team Cireson on Vimeo. Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!

April .NET Update Breaks PowerShell’s Stop-Computer Command

This issue is currently tracking, but those that applied the .NET update for April 2017 can no longer issue a stop-computer command (used to shutdown the computer) in PowerShell. This happens both when run as a non-administrator or using administrator credentials. A workaround is offered here: https://superuser.com/questions/1199285/stop-computer-privilege-not-held The issue is being investigated by Microsoft and, if this affects you, you are asked to open a support case. Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!

Customer Petition to Bring Back the Old Microsoft Security Bulletins

In November of last year, Microsoft announced that it would end how it distributed security patch information. The company said that it would stop using the old format and would migrate to the new Security Updates Guide which is located here: https://portal.msrc.microsoft.com/en-us/security-guidance This month, the complaints are starting to mount in the communities. A thread has been started in the forums for the Security TechCenter to Bring the old Security Bulletins back. The please is pretty simple… While it’s appreciated to have a searchable database in the Security Update Guide, it is too cumbersome to use to quickly get the information needed on Update Tuesday… …It seems the desire is to simply say, “The updates are in cumulative packages so you have to...

.NET Framework Update Issue Suggested Workaround is to Allow Remote Code Execution

Among the patches Microsoft is delivering to supported Windows platforms this month, there’s one specific to the .NET Framework 3.5.1 for Windows 7 Service Pack 1 and Windows Server 2008 R2 Service Pack 1. This particular update has a known issue: Some Windows Management Instrumentation (WMI) applications may experience errors caused by using unsecured remote connections. Applications may return an error that has the following message: Get-WmiObject : The method or operation is not implemented. Microsoft’s workaround? …temporarily disable the secure mode from this update…Warning: Enabling this registry entry could allow security vulnerabilities including Remote Code Execution. Full details along with the registry modification here: Description of the Security and Qu...

Microsoft Plugs Open Hole in Word that Was Being Actively Exploited

To close the loop, the zero-day Word vulnerability we reported just a day ago in, Zero-day Word Vulnerability Attacks Spotted in the Wild, Microsoft has now resolved the exploit in the April Patch Tuesday updates. The fix is this one: Description of the security update for Office 2010: April 11, 2017 (KB3141538) Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!

Errors During WSUS Update Synchronization for April 2017 Updates

There have been multiple reports where WSUS and SCCM administrators are seeing the following error message when trying to sync updates: SoapException: Fault occurred at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall) at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters) at Microsoft.UpdateServices.ServerSyncWebServices.ServerSync.ServerSyncProxy.GetUpdateData(Cookie cookie, UpdateIdentity[] updateIds) at Microsoft.UpdateServices.ServerSync.CatalogSyncAgentCore.WebserviceGetUpdateData(UpdateIdentity[] updateIds, List`1 allMetadata, List`1 allFileUrls, List`1& updatesWithSecureFileData, Boolean isForConfig) at Microsoft.UpdateServic...

Microsoft Breaks Skype Room Systems v2 Updating Capability with an Update

Skype Room Systems version 2 has an update waiting for it in the Windows Store. Unfortunately, due to the March 22, 2017 update for Windows 10 (KB4016635), the app cannot be updated. Microsoft is expected to release a fix for the problem – over Windows Update. Customers who need it fixed now can update manually. Details in KB4018816. Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in San Francisco in 2017!

A Patcher’s PSA: Adobe Acrobat and Reader Getting Major Version Number Updates in April

According to Adobe… Starting in April, 2017, all customers on the Continuous track will move from 15.xx to 17.xx after the patch is deployed. There will be no change for customers on Classic track or older versions like Acrobat/Reader XI. … New version number will appear on splash screens, MSI queries, ARP, DLL file versions, About box and application version (for Mac). SCCM/Casper will also start reporting the new version. If there are any software audit scripts that check for version number, they will start reporting 17.xx version. … Remember, if there are any patch deployment scripts which use version number checks before applying a patch, they may need changes to handle 17.xx version number. Full announcement: Acrobat’s getting a new version number (Reader too!) Looki...