They come along for the ride with this month’s Excel security patches — but Microsoft didn’t bother to document any of it, outside of an addendum to
[See the full post at: Excel gets a variation of the Word DDE block settings]
|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
Excel gets a variation of the Word DDE block settings
- This topic has 5 replies, 4 voices, and was last updated 7 years, 3 months ago.
AuthorViewing 3 reply threadsAuthor-
Increasingly, it seems that security vulnerabilities are being addressed through disabling the functionality an exploit might utilize for an attack. Perhaps I am overstating the case but the cyberattack hysteria we are all living with is inevitably reducing the throughput and functional features of our systems/software. The move by MS to cumulative rollups leaves us with the quandary to accept the downsides or stop patching entirely. I am starting to wonder if and when it will be time to step off this train.
-
Mostly agree with you, EXCEPT that much of this functionality should NEVER have been enabled by default in the first place.
Those who really want and need some particular functionality would soon figure out how to enable it. The rest of us would NEVER have to deal with it, and naive users would never, EVER, be put at risk by security flaws in a feature they didn’t even know existed!
-
-
“All of this came as quite a surprise to me because Microsoft didn’t bother to document any of it in this month’s security bulletins. Instead, the description has been added to last year’s Security Advisory 170021.”
Microsoft can send you email notifications for things like this. See Microsoft Technical Security Notifications. An alternative source: http://seclists.org/microsoft/. For example, this was the notification that Microsoft sent about the change in the security advisory mentioned above.
1 user thanked author for this post.
-
-
Viewing 3 reply threads
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Xfinity home internet
by 2 hours, 37 minutes ago
-
Convert PowerPoint presentation to Impress
by 1 hour, 11 minutes ago
-
Debian 12.11 released
by 9 hours, 38 minutes ago
-
Microsoft: Troubleshoot problems updating Windows
by 13 hours, 19 minutes ago
-
Woman Files for Divorce After ChatGPT “Reads” Husband’s Coffee Cup
by 10 hours, 49 minutes ago
-
Moving fwd, Win 11 Pro,, which is best? Lenovo refurb
by 9 hours, 47 minutes ago
-
DBOS Advanced Network Analysis
by 1 day, 6 hours ago
-
Microsoft Edge Launching Automatically?
by 20 hours, 39 minutes ago
-
Google Chrome to block admin-level browser launches for better security
by 1 day, 8 hours ago
-
iPhone SE2 Stolen Device Protection
by 1 day, 1 hour ago
-
Some advice for managing my wireless internet gateway
by 8 hours, 43 minutes ago
-
NO POWER IN KEYBOARD OR MOUSE
by 1 hour, 35 minutes ago
-
A CVE-MITRE-CISA-CNA Extravaganza
by 1 day, 18 hours ago
-
Sometimes I wonder about these bots
by 1 day, 14 hours ago
-
Does windows update component store “self heal”?
by 1 day, 4 hours ago
-
Windows 11 Insider Preview build 27858 released to Canary
by 2 days, 8 hours ago
-
Pwn2Own Berlin 2025: Day One Results
by 16 hours, 18 minutes ago
-
Windows 10 might repeatedly display the BitLocker recovery screen at startup
by 4 hours, 56 minutes ago
-
Windows 11 Insider Preview Build 22631.5409 (23H2) released to Release Preview
by 2 days, 11 hours ago
-
Windows 10 Build 19045.5912 (22H2) to Release Preview Channel
by 2 days, 11 hours ago
-
Kevin Beaumont on Microsoft Recall
by 1 day, 23 hours ago
-
The Surface Laptop Studio 2 is no longer being manufactured
by 2 days, 19 hours ago
-
0Patch, where to begin
by 2 days, 13 hours ago
-
CFPB Quietly Kills Rule to Shield Americans From Data Brokers
by 3 days, 8 hours ago
-
89 million Steam account details just got leaked,
by 2 days, 20 hours ago
-
KB5058405: Linux – Windows dual boot SBAT bug, resolved with May 2025 update
by 3 days, 17 hours ago
-
A Validation (were one needed) of Prudent Patching
by 3 days, 8 hours ago
-
Master Patch Listing for May 13, 2025
by 10 hours, 32 minutes ago
-
Installer program can’t read my registry
by 2 hours, 26 minutes ago
-
How to keep Outlook (new) in off position for Windows 11
by 3 days, 6 hours ago
Remembering Woody
