{"id":16080,"date":"2019-08-15T06:30:04","date_gmt":"2019-08-15T14:30:04","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/08\/15\/news-9823\/"},"modified":"2019-08-15T06:30:04","modified_gmt":"2019-08-15T14:30:04","slug":"news-9823","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/08\/15\/news-9823\/","title":{"rendered":"Microsoft warns of Visual Basic, VBA and VBScript 'procedure call' errors after August patches"},"content":{"rendered":"

<\/p>\n

Credit to Author: Woody Leonhard| Date: Thu, 15 Aug 2019 05:28:00 -0700<\/strong><\/p>\n

August is going to be a perilous patching month.<\/span><\/p>\n

We\u2019re tracking down credible reports of the <\/span>Server 2012 R2 Monthly rollup breaking RDP logins<\/span><\/a>, a conflict between the <\/span>Win10 1903 cumulative update and last month\u2019s version of Outlook 365<\/span><\/a>, confusion about Win7 patches <\/span>being branded as \u201cIA64 only<\/a>,\u201d dealing with the <\/span>lack of telemetry (!)<\/span><\/a> in the August Win7 Security Only patch, <\/span>much mayhem<\/span><\/a> trying to install SHA-2 signed patches (including the Win7 Monthly Rollup) on <\/span>systems using Symantec Endpoint Protection<\/a>, even <\/span>more confusion<\/span><\/a> over the difference between Symantec Endpoint Protection and Norton Security Suite, and lots of the usual installation failures and rollbacks.<\/span><\/p>\n

I\u2019m personally fuming about a lot of <\/span>press-generated humbug<\/span><\/a> about the need to install all the August patches right away, to protect against DejaBlue (also known as BlueKeep II, III, IV and V). The Chicken Littles are winning the clickbait wars. There is still <\/span>no publicly available exploit<\/span><\/a> for BlueKeep, fer heaven’s sake, and there’s no way the DejaBlues are an \u201cimmediate, viral\u201d threat.<\/span><\/p>\n

While all of that was swirling around, Microsoft quietly released an update to the \u201cKnown issues\u201d section of every August Windows patch. It says:<\/span><\/p>\n

After installing this update, applications that were made using Visual Basic 6 (VB6), macros using Visual Basic for Applications (VBA), and scripts or apps using Visual Basic Scripting Edition (VBScript) may stop responding and you may receive an “invalid procedure call error.”<\/span><\/p>\n

That\u2019s a stunning error for Microsoft\u2019s ubiquitous (if ancient) programming language.<\/span><\/p>\n

Even more impressive: I can\u2019t find independent reports of the bug. The German-language <\/span>deskmodder.de site<\/span><\/a> mentions the \u201cKnown issues\u201d listing, but has no details. I can’t figure out where the error came from, how widespread it might be, why it appears, or if it can be worked around, except by uninstalling the patch.\u00a0<\/span><\/p>\n

\u201cInvalid procedure call\u201d errors in VB are a dime a dozen. What happened in this month\u2019s Windows patches to trigger them? And why wasn\u2019t the bug caught before it was released?<\/span><\/p>\n

One last question. Aren\u2019t you glad you delayed updating<\/a> this month?<\/span><\/p>\n

If you know, let us know on <\/span><\/i>AskWoody.com<\/span><\/i><\/a><\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: Woody Leonhard| Date: Thu, 15 Aug 2019 05:28:00 -0700<\/strong><\/p>\n

\n
\n

August is going to be a perilous patching month.<\/span><\/p>\n

We\u2019re tracking down credible reports of the <\/span>Server 2012 R2 Monthly rollup breaking RDP logins<\/span><\/a>, a conflict between the <\/span>Win10 1903 cumulative update and last month\u2019s version of Outlook 365<\/span><\/a>, confusion about Win7 patches <\/span>being branded as \u201cIA64 only<\/a>,\u201d dealing with the <\/span>lack of telemetry (!)<\/span><\/a> in the August Win7 Security Only patch, <\/span>much mayhem<\/span><\/a> trying to install SHA-2 signed patches (including the Win7 Monthly Rollup) on <\/span>systems using Symantec Endpoint Protection<\/a>, even <\/span>more confusion<\/span><\/a> over the difference between Symantec Endpoint Protection and Norton Security Suite, and lots of the usual installation failures and rollbacks.<\/span><\/p>\n

To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[10516,714,10525],"class_list":["post-16080","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-microsoft","tag-security","tag-windows"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16080","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=16080"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/16080\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=16080"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=16080"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=16080"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}