Home Tags Windows 8.1

Tag: Windows 8.1

Windows 10 fall update will restore (and improve) OneDrive’s best feature

Feature restores and improves upon the way OneDrive worked in Windows 8.1.

Microsoft begins denying updates to some Windows 7 users

Microsoft this week began blocking Windows 7 and 8.1 PCs equipped with the very newest processors from receiving security updates, making good on a policy it announced but did not implement last year.But the company also refused to provide security ...

Microsoft releases multiple fixes for CRM bugs, including Win10 emergency patch...

Heads up, those of you who had problems with last week’s botched security patches, which clobbered Microsoft Dynamics CRM 2011 and CRM 2013 OnPremises reports; Telerik RadListBox and RadWindow controls; and various IE compatibility modes.

A slew of patches appeared late last night, but it’s still too early to tell if they’re effective in resolving all those reported ills.I counted four new patches.

As of early Thursday morning, three of them are documented.[ The essentials for Windows 10 installation: Download the Windows 10 Installation Superguide today. | Stay up on key Microsoft technologies with the Windows Report newsletter. ]KB 4016635 is a new cumulative update for Windows 10 Anniversary Update, bringing version 1607 up to build 14393.970. Yes, that’s the third cumulative update for version 1607 in the past eight days. KB 4016636 is likely a new, as-yet-undocumented cumulative update for Win10 November Update, version 1511. (I’m just guessing at the KB number because it falls between the KB for 1607 and the one for 1507.) ChangeWindows doesn’t yet list a new build number. KB 4016637 is a new cumulative update for the original release of Win10, commonly called 1507.

This brings the build number up to 10240.1732. KB 4016446 is a patch for Internet Explorer 11 that fixes the bugs in last week’s MS17-006/KB 4012204 security patch. The KB article for 4016446 explains: Forms in Microsoft Dynamics CRM 2011 are not displayed correctly after KB 4013073 is installed on a Windows system that is running Internet Explorer 11… This update is required only if you are experiencing the symptoms that are described in the “Symptoms” section, and you have cumulative security update 4013073 installed on Windows 8.1, Windows Server 2012 R2, Windows 7 SP1, or Windows Server 2008 R2 SP1.To read this article in full or to leave a comment, please click here

Microsoft begins blocking updates for older Windows versions on newer hardware

Windows 7 is supported until 2020, and Windows 8.1 will get updates until 2023, right? Not if you're trying to run those older Windows versions on new hardware, as some frustrated customers discovered this week.

Blocking Windows 7, 8.1 updates for Kaby Lake, Ryzen chips appears...

It looks like a policy announced a year ago is going to kick in.

Microsoft Releases Security Updates For Some, Not All, Flaws

February 21 release addresses Adobe Flash Player bugs for Internet Explorer on Windows 8.1 and Edge for Windows 10.

Microsoft rolls out KB 4010250 Flash Player update for Windows 8.1...

Microsoft has released an old-fashioned Security Bulletin, MS 17-005, which shepherds a handful of patches for various versions of Windows.

The patches, all called KB 4010250, implement the Flash Player fixes contained in Adobe's APSB17-04, which fi...

Surprise! Microsoft issues Flash patches for Internet Explorer, Edge

Microsoft sent an email to its largest customers on Monday, alerting them that Adobe Flash Player patches for Internet Explorer and Edge will be coming today.

Apparently Microsoft's announcement last week that it would delay February patches until March 14 didn't tell the whole story.Yesterday's email says in part: Microsoft is planning to release security updates for Adobe Flash Player.

These updates will be offered to the following operating systems: Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, Windows 10, and Windows Server 2016...To read this article in full or to leave a comment, please click here

New Windows 10 SDK prods devs to embrace Windows’ future

It won’t be long now until the third major update of Windows 10 leaves the Windows Insider program and becomes the basis for the Current Branch release. Not long after, it should become the Current Branch for Business release, ready for wide-scale deployment on corporate hardware.

Although many enterprises have yet to start rolling out Windows 10, we’re now at the point where it’s getting hard to find new PCs that run Windows 8.1 and earlier.

The clock is ticking. Last week, Microsoft announced that its Windows 10 SDK is now feature-complete, and developers should start using the latest build of the SDK to develop software for the upcoming Windows 10 Creators Update 1703 release.

Getting a feature-complete SDK out the door is important, especially because Microsoft isn’t giving up on its Universal Windows Platform that relies on them.To read this article in full or to leave a comment, please click here

Microsoft re-releases snooping patches KB 2952664, KB 2976978

We don't know what KB 2952664 (for Windows 7) and KB 2976978 (for Windows 8.1) actually do.

But both patches have been shown in the past to trigger a new Windows task called DoScheduledTelemetryRun.To read this article in full or to leave a comment...

VU#867968: Microsoft Windows SMB Tree Connect Response denial of service vulnerability

Microsoft Windows contains a memory corruption bug in the handling of SMB traffic,which may allow a remote,unauthenticated attacker to cause a denial of service on a vulnerable system.

Microsoft Patch Tuesday Bulletin Warns of Critical Flaw

Microsoft warned of one critical Adobe Flash Player bug and three additional vulnerabilities rated as important, as part of its regular Patch Tuesday update.

The Microsoft vulnerabilities are tied to Office 2016, its Edge browser and its Local Security Authority Subsystem Service (LSASS). First up is a critical security bulletin issued by Microsoft that is tied to a swath of bugs found in Adobe Flash Player used in its Windows 8.1 OS (64-bit, 32-bit), Windows RT 8.1, multiple versions of Windows 10 and Windows Server 2016.

Those Adobe Flash Player vulnerabilities were outlined earlier Tuesday by Adobe when it announced a bevy of patches that addressed code execution flaws in Flash, Reader and Acrobat.

Besides applying the requisite patches, Microsoft suggested disabling instances of Adobe Flash Player in Internet Explorer and other applications that honor the kill bit feature, such as Office 2007 and Office 2010. As for the three bulletins market as important, Microsoft identified an Office (MS17-002) bug that could allow remote code execution if a user opened a specially crafted Office file.

This vulnerability was originally identified by Microsoft as critical, but it later downgrading the bulletin to important.

The flaw (CVE-2017-0003) impacts specific Office applications such as Microsoft Word 2016 (64-bit, 32-bit) as well as Microsoft SharePoint Enterprise Server 2016. “Customers whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights,” according to the bulletin. Elevation of privilege vulnerabilities (MS17-001), rated important, were found in seven versions of Microsoft’s Edge browser and were also patched. “An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies with about:blank, which could allow an attacker to access information from one domain and inject it into another domain.

An attacker who successfully exploited this vulnerability could elevate privileges in affected versions of Microsoft Edge,” according to Microsoft. An additional denial of service vulnerability rated important was also patched, impacting Microsoft Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 (and Server Core).

The DOS vulnerability (MS17-004) exists in the way the Local Security Authority Subsystem Service (LSASS) handles authentication requests, said Microsoft. “An attacker who successfully exploited the vulnerability could cause a denial of service on the target system’s LSASS service, which triggers an automatic reboot of the system,” Microsoft said. Today’s Patch Tuesday, the first of 2017, marks the first monthly cycle that Microsoft is doing away with bulletins for newer products.
Instead, Microsoft patches will be delivered in one installable package. Under the new patch management regime Microsoft’s Vista operating system will still get bulletins however. Microsoft’s Patch Tuesday coincides with the release with cumulative updates for nearly all versions of Windows 10 including the Anniversary Update for PCs (Build 14393.693).

The update did not introduce new features, rather fixed several security-related features such as fingerprint authentication, App-V Connection Group and an issue that had allowed two similar input devices to work on the same machine.