Resolves vulnerabilities in Windows Server 2008 that could allow information disclosure or remote code execution.
Resolves vulnerabilities in Windows that could allow elevation of privilege if an attacker is allowed to log on to the system and then run a specially crafted application.
Microsoft researchers found multiple vulnerabilities in OpenVPN that could lead to an attack chain allowing remote code execution and local privilege escalation. This attack chain could enable attackers to gain full control over targeted endpoints, potentially resulting in data breaches, system compromise,...
3)启用网络级认证(NLA),此方案适用于Windows 7、Windows Server 2008和Windows Server 2008 R2。启用NLA后,攻击者需要使用目标系统上的有效帐户对远程桌面服务进行身份验证,因而提高了攻击门槛。 参考资料 https://msrc-blog.microsoft.com/2019/08/13/patch-new-wormable-vulnerabilities-in-remote-desktop-services-...
TLS 1.0 has had its share of vulnerabilities, and more and more organizations are beginning to turn this off as a choice for negotiation of encryption between client and server. I recommend that you do too, and use more secure versions like TLS 1.1 or 1.2 if possib...
Windows Server security baselines include the following elements:A detailed view of security vulnerabilities related to certain server, application, and browser settings, and the potential impact of configuring significant settings in these areas, to help you better understand how to effectively mitigate ...
Security updates that normally address known security vulnerabilities are now gone after EOS. Unless your organization has purchased Extended Security Updates (ESU), which qualifies it to receive updates until 2022, or a period of three years from EOS. If you have migrated your Windows 2008 Server...
TLS 1.0 has had its share of vulnerabilities, and more and more organizations are beginning to turn this off as a choice for negotiation of encryption between client and server. I recommend that you do too, and use more secure versions like TLS 1.1 or 1.2 if possible...
Windows Server security baselines include the following elements:A detailed view of security vulnerabilities related to certain server, application, and browser settings, and the potential impact of configuring significant settings in these areas, to help you better understand how to effectively mitigate ...
Windows Server security baselines include the following elements: A detailed view of security vulnerabilities related to certain server, application, and browser settings, and the potential impact of configuring significant settings in these areas, to help you better understand how to effectively mitigate...