VMware Log4j Vulnerabilities Confirmed

I don’t often dedicate a blog post to a particular security vulnerability, but since it has scored a perfect 10 CVE rating, it’s important to be aware ASAP. VMware have identified multiple products that utilise the Apache technology that are vulnerable to the Log4j vulnerability. What is this “Log4j” vulnerability? A Remote Code Execution (RCE)… Continue reading VMware Log4j Vulnerabilities Confirmed

Microsoft Exchange Server KB5000871: Unable to Apply “owaauth.dll”, 400 Bad Request & Server Error in ECP application

Hey, so I’ve been going through all our customers this week that’ve been identified as potentially at risk by the latest Exchange Server vulnerabilities (full details straight from Microsoft here) and as you can expect from a rapid response release, it’s not quite consistent when installing. Please be painfully aware of the Microsoft installation notes… Continue reading Microsoft Exchange Server KB5000871: Unable to Apply “owaauth.dll”, 400 Bad Request & Server Error in ECP application