This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target machine.

When you use the Gpupdate /force command on a Microsoft Windows Server 2003-based domain controller, or you restart a Windows Server 2003-based domain controller, the following error message may be logged in the Application log: Event Type: Error. Event Source: Userenv.

The Group Policy client service calls a gpupdate/refresh_policy remote procedure call (RPC). In this scenario, the Svchost.exe process that hosts the Group Policy client service crashes. Resolution. Hotfix information. A supported hotfix is available from Microsoft.

Run the System File Checker tool (SFC.exe) To do this, follow these steps: Open an elevated command prompt. To do this, do the following as your appropriate: If you are running Windows 10, Windows 8.1 or Windows 8, first run the inbox Deployment Image Servicing and Management (DISM) tool prior to running the System File Checker.

This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target machine.

When the policy is refreshed (by default, every 90 minutes, or manually through GPUPDATE), the policy settings are deleted and then reset. During this period, the configuration on the server is temporarily valid. Therefore, all sessions may be disconnected. Cause. To resolve this issue, set the fDenyTSConnections registry value to 0.

Windows Update troubleshooter. Automatically repair system files and settings to improve device security. Next steps. The device should now be able to update as expected without further steps. Microsoft is working on a resolution to prevent this issue and will provide an update in an upcoming release.

You manually update the Group Policy settings by running the gpupdate /force command. The Group Policy settings are automatically refreshed. This occurs every 90 minutes.

This security update resolves a Microsoft Excel remote code execution vulnerability and Microsoft Office information disclosure vulnerability. To learn more about the vulnerabilities, see the following security advisories: Microsoft Common Vulnerabilities and Exposures CVE-2021-31174.

Summary. This update addresses the following issue: Addresses a known issue that might cause authentication failures related to Kerberos tickets you acquired from Service for User to Self (S4U2self).