check before: 2023-03-28
Product:
Windows, Windows Server
Platform:
Windows Desktop, World tenant
Status:
Change type:
Admin impact
Links:
Details:
As previously announced, security requirements have increased for Windows devices that use the Distributed Component Object Model (DCOM) or Remote Procedure Call (RPC) server technologies. DCOM clients attempting to establish connections to DCOM servers which have applied updates released June 14, 2022, or later, must support an authentication level of RPC_C_AUTHN_LEVEL_PKT_INTEGRITY and higher.
As of March 14, 2023, it is no longer be possible to bypass authentication level enforcement by creating a registry key in the DCOM server. By this point, you must resolve any compatibility issues with the hardening changes.
For more information, see KB5004442—Manage changes for Windows DCOM Server Security Feature Bypass (CVE-2021-26414).
When will this happen:
March 14, 2023. Updates released on this day and later will have hardening changes enabled by default with no ability to disable them.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2023-03-15
updated:
2023-03-15
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
** AI generated content. This information is not reliable.
the free basic plan is required to see all details. Sign up here
Last updated 5 months ago