Windows 7

Microsoft Patches Severe Bug in Remote Desktop Services

One of the more critical security holes that Microsoft is patching this month is one in its Remote Desktop Services. Today Microsoft released fixes for a critical Remote Code Execution vulnerability, CVE-2019-0708, in Remote Desktop Services – formerly known as Terminal Services – that affects some older versions of Windows. The Remote Desktop Protocol (RDP) itself is not vulnerable. This vulnerability is pre-authentication and requires no user interaction. In other words, the vulnerability is ‘wormable’, meaning that any future malware that exploits this vulnerability could propagate from vulnerable computer to vulnerable computer in a similar way as the WannaCry malware spread across the globe in 2017. While we have observed no exploitation of this vulnerability, it is highly likely that...

Antivirus Vendors Still Struggling to Support Microsoft’s Latest Windows Update

Some headway has been made to support Microsoft’s latest Windows update with Arcabt and Avast releasing emergency fixes – but for many other antivirus firms, the latest round of Windows updates is still causing many PCs to become unstable and fail to boot. Microsoft is still blocking the update from installing on those PCs that are detected to run the troublesome antivirus packages. Those still without final resolutions remain: Sophos Avira McAfee While Microsoft continues to work with the antivirus vendors, guidance for temporarily resolving problems has been released from some of them: Sophos support article Arcabit support article Avast support KB article McAfee Security (ENS) Threat Prevention 10.x McAfee Host Intrusion Prevention (Host IPS) 8.0 Note that these issues only ...

Microsoft Blocks April 2019 Windows Updates Causing Boot Problems

Microsoft has now blocked a few updates from being downloaded and installed due to a problem that exists between Sophos Antivirus and the updates. The updates affected are: KB4493467 KB4493446 KB4493448 KB4493472 KB4493450 KB4493451 Per the Known Issue note: Microsoft and Sophos have identified an issue on devices with Sophos Endpoint Protection installed and managed by either Sophos Central or Sophos Enterprise Console (SEC) that may cause the system to freeze or hang upon restart after installing this update. Microsoft has temporarily blocked devices from receiving this update if the Sophos Endpoint is installed until a solution is available. For more information see the Sophos support article.

Known Issues (so far) for March 2019 Patch Tuesday Updates

Each month Microsoft prepares customers for the problems it knows about when delivering the bevy of updates designed to make its software more secure.  These are things that the company identified during testing and will likely fix later. However, the first 24 hours are crucial, as customers tend to locate and report on the stack of unknown issues that couldn’t be detected during testing. Here’s what Microsoft has communicated already… 4489878 Windows 7 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Monthly Rollup) – After installing this update, Internet Explorer 10 may have authentication issues. This occurs when two or more people use the same user account for multiple, concurrent login sessions on the same Windows Server machine, including Remote Desktop...

Windows 7 to Start Nagging Users to Upgrade Starting in April

Support for Windows 7 ends on January 14, 2020, and as Microsoft did with Windows XP, the company will start using nag banners to get users to upgrade. In this case, the upgrade point is to Windows 10. To help our customers get advanced notice of this change, we are reaching out with information and resources. Beginning next month, if you are a Windows 7 customer, you can expect to see a notification appear on your Windows 7 PC. This is a courtesy reminder that you can expect to see a handful of times in 2019. By starting the reminders now, our hope is that you have time to plan and prepare for this transition. These notifications are designed to help provide information only and if you would prefer not to receive them again, you’ll be able to select an option for “do not notify me again,”...

With a Serious Exploit Being Actively Targeted Against Windows 7, Google Pushes Windows 10 Upgrades

Google recently patched a zero-day flaw in its Chrome web browser, but a second one that affects Windows 7 is still being actively exploited. Google relayed the information about the vulnerability to Microsoft, and the Windows company has responded directly to Google that a fix is in the works. Of course, there’s no timeline given, so Windows 7 users are vulnerable. Based on the vulnerability that only affects Windows 7, Google is providing this guidance: As mitigation advice for this vulnerability users should consider upgrading to Windows 10 if they are still running an older version of Windows and to apply Windows patches from Microsoft when they become available. We will update this post when they are available. Details: Disclosing vulnerabilities to protect users across platform...

Workplace Join for non-Windows 10 Computers

Microsoft has provided an installation tool for non-Windows 10 computers to enjoy self-service registration on the corporate domain. The tool is distributed through an .MSI file and is available for download: Microsoft Workplace Join for non-Windows 10 computers The tool allows you to register non-Windows 10 computers for Workplace Join and supports the following non-Windows 10 systems: Windows 7, Windows 8.1, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2

Microsoft to Begin Upgrading Windows 7 Security in March 2019

In November 2018, Microsoft communicated upcoming changes to Windows 7 security, moving to the SHA-2 algorithm exclusively. We now know the timeline for these changes. The company will deploy the changes methodically, but start the process with March 2019 updates and finishing up in July 2019. Customers running legacy OS versions (Windows 7 SP1, Windows Server 2008 R2 SP1 and Windows Server 2008 SP2) will be required to have SHA-2 code signing support installed on their devices by July 2019. Any devices without SHA-2 support will not be offered Windows updates after July 2019. To help prepare you for this change, we will release support for SHA-2 signing in 2019. Some older versions of Windows Server Update Services (WSUS) will also receive SHA-2 support to properly deliver SHA-2 signed up...

February Cumulative Update for Windows 7 Makes it Difficult to Troubleshoot NIC Problems

With the rollout of Microsoft’s monthly updates for Windows 7, a new bug has been introduced that could make troubleshooting network problems more difficult. After installing this update, the Event Viewer may not show some event descriptions for network interface cards (NIC). Microsoft doesn’t go any further in describing exactly what event descriptions are forfeit but does promise a resolution to the issue sometime in March 2019.

Mid-February Slated for Microsoft to Fix Virtual Machines for Windows 7

As has often been the case, Microsoft has introduced a new gotcha this month in the cumulative update for Windows 7. After installing this update, virtual machines (VM) may fail to restore successfully if the VM has been saved and restored once before. The error message is, “Failed to restore the virtual machine state: Cannot restore this virtual machine because the saved state data cannot be read. Delete the saved state data and then try to start the virtual machine. (0xC0370027).” This affects AMD Bulldozer Family 15h, AMD Jaguar Family 16h, and AMD Puma Family 16h (second generation) microarchitectures. Microsoft is aware of the issue and has set mid-February as a tentative time to see a fix. Stay close, we’ll keep a watchful eye out and let you know when the fix is available.

Microsoft Japan Gives the List of January’s ‘Problematic’ Updates for Windows 7 Network Connectivity

UPDATE: Microsoft quietly resolved the issue described in this article using KB4487345 Original article… Microsoft USA rarely apologizes for bad patches and definitely refuses to concede that any are problematic, however, Microsoft Japan has now listed out the updates (translated page) from January 2019’s Patch Tuesday that are giving companies fits when trying to connect to their networks. What started out as the inability to connect to network shares has also been reported to keep users from connecting to shared printers. After applying one of the following update programs published on January 8, 2019, to the file server and accessing the file server (the computer holding the shared folder ) by using the local user belonging to the Administrators group, The event of connectio...

Microsoft Reverts Changes to KMS Servers that Caused Widespread Problems with KB971033

UPDATE: What seemed like yet another problem with yet another Microsoft patch has turned out to be something else. The issue, as it turns out, was a combination of customers installing KB971033 and Microsoft making changes to its license activation servers. From Activation failures and “not genuine” notifications around January 8, 2019, on volume-licensed Windows 7 KMS clients: A recent update to the Microsoft Activation and Validation unintentionally caused a “not genuine” error on volume-licensed Windows 7 clients that had KB 971033 installed. The change was introduced at 10:00:00 UTC on January 8, 2019, and was reverted at 4:30:00 UTC on January 9, 2019. Note This timing coincides with the release of the “1B” January 2019 updates (KB 4480960 and KB 4480970) that ...

  • 1
  • 2
  • 6