SafeExamBrowser/seb-win-refactoring v3.6.0

Safe Exam Browser 3.6.0

on GitHub

Summary

This feature update adds signature verification for third-party applications, provides version restriction by configuration file and adds an isolated clipboard implementation as well as important bug fixes and improvements.

This release version furthermore includes important security improvements of exploits discovered by students of TU Eindhoven, and we hereby would like to express our gratitude for the proactive, constructive and responsible vulnerability disclosure, namely and in no particular order to Angelos Mangos, Bence Barnabas Racsko, Paolo Pocol, Strahil Georgiev Peykov, Wiliam Dokov, Techna Huynh, Teun Peters and Andrei Tudor Popescu.

Changes

• Fixed bug with quit URL where URLs not exactly matching the quit URL would also trigger a shutdown.
• Implemented signature verification for application monitoring (#593).
• Fixed false-positive VM detection due to virtual disk devices (#604).
• Fixed missing BEK and CK headers after e.g. authentication redirection.
• Added Spanish translation.
• Updated target framework to .NET Framework 4.8 and changed setup bundle to also embed .NET setup bootstrapper.
• Implemented version restriction functionality.
• Improved virtual machine detection.
• Implemented isolated clipboard functionality (#625).
• Fixed issue where password dialog was visible but not having input focus during application startup (#323).
• Fixed loading of MAC address for system info (#637).
• Implemented basic cursor functionality (#606).
• Added Splashtop to default list of prohibited applications.
• Implemented support for configuration data URIs.
• Implemented random desktop functionality.
• Improved logging with respect to default settings initialization.
• Added Pulseway RMM to default list of prohibited applications.
• Fixed status info in Action Center WLAN control when wireless is enabled but not connected (i.e. using wired connection).
• Added Dutch / Flemish translation (#713).
• Fixed false positive VM detection for VirtualBox host systems (#669).
• Fixed bug with ease of access configuration verification.
• Added Russian translation (#723).
• Added new Teams and OBS to prohibited applications (#725, #727).
• Added Estonian translation (#716).
• Updated browser engine to version 118.6.80 (Chromium version 118.0.5993.117).

The following optional features and changes are disabled by default and need to be configured individually:

• Removed Zoom proctoring implementation and added error message when Zoom proctoring is active. Due to licensing issues Zoom live proctoring is only available for SEB Alliance members, please refer to https://safeexambrowser.org/alliance/members.html.
• Added user identifier detection via Moodle plugin.

Known Issues

• Screen readers NVDA and JAWS are not compatible with kiosk mode Create New Desktop. If their usage is required, please use kiosk mode Disable Explorer Shell where they should work as expected.
• Live proctoring isn't compatible with kiosk mode Create New Desktop due to an issue in WebView2 (see MicrosoftEdge/WebView2Feedback#960). Thus, if live proctoring is active, the kiosk mode will always automatically be set to Disable Explorer Shell.

Requirements

SEB 3.6.0 requires the prerequisites listed below in order to work correctly. These are automatically installed with the setup bundle and need only be manually installed when using the MSI packages.

• .NET Framework 4.8 Runtime: https://dotnet.microsoft.com/download/dotnet-framework/net48
• Microsoft Edge WebView2 Runtime: https://go.microsoft.com/fwlink/p/?LinkId=2124703
• Visual C++ 2015-2019 Redistributable: https://support.microsoft.com/en-us/help/2977003/the-latest-supported-visual-c-downloads

Installation

Please use the setup bundle for installation! The platform-specific setups are mainly provided for system administrators who require MSI packages for their automated installation procedures.