[10224] in Security FYI
[IS&T Security-FYI] Microsoft issues emergency fix for Internet
daemon@ATHENA.MIT.EDU (Monique Buchanan)
Thu May 1 15:19:08 2014
Resent-From: ist-security-fyi@MIT.EDU
From: Monique Buchanan <myeaton@MIT.EDU>
To: ist-security-fyi <ist-security-fyi@MIT.EDU>,
itpartners
<itpartners@MIT.EDU>
Date: Thu, 1 May 2014 19:17:52 +0000
Message-ID: <A2C8BB6B-B9F9-45F3-9F57-8045CD983EE3@mit.edu>
Content-Language: en-US
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0870780921=="
Errors-To: ist-security-fyi-bounces@MIT.EDU
--===============0870780921==
Content-Language: en-US
Content-Type: multipart/alternative;
boundary="_000_A2C8BB6BB9F945F39F578045CD983EE3mitedu_"
--_000_A2C8BB6BB9F945F39F578045CD983EE3mitedu_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Today Microsoft issued an out-of-band patch to fix a vulnerability in Inter=
net Explorer 6 through 11. The zero-day exploit (CVE-2014-1776<http://www.s=
ophos.com/en-us/threat-center/threat-analyses/vulnerabilities/VET-000596.as=
px>) was identified in targeted attacks against Internet Explorer 9 through=
11 earlier this week.
Microsoft advises to download the security bulletin as soon as possible thr=
ough Windows Update. For details on the patch see: MS14-021 : Security Upda=
te for Internet Explorer (2965111)<https://technet.microsoft.com/library/se=
curity/ms14-021>
MIT WAUS has pushed the patch out to subscribers. Although a patch for IE o=
n Windows XP was included in this fix, it is unlikely that the software com=
pany will do this again. Microsoft reminds customers still running Windows =
XP to upgrade to Windows 7 or 8 now.
Be sure to also use anti-virus software. Sophos Anti-Virus<http://ist.mit.e=
du/sophos>, available for free from the software download page, protects ag=
ainst this virus.
For further reading, See the story: Microsoft issues Internet Explorer secu=
rity fix<http://www.usatoday.com/story/tech/2014/05/01/microsoft-issues-int=
ernet-explorer-security-fix/8562737/>.
Sincerely,
Monique
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D
Monique Buchanan
IT Security Communications Consultant
Information Systems & Technology (IS&T)
Massachusetts Institute of Technology
http://ist.mit.edu/secure
tel: 617.253.2715
--_000_A2C8BB6BB9F945F39F578045CD983EE3mitedu_
Content-Type: text/html; charset="us-ascii"
Content-ID: <4A4E969FBDF8F342AD565FB5CAB7E2CE@exchange.mit.edu>
Content-Transfer-Encoding: quoted-printable
<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii"=
>
</head>
<body style=3D"word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-lin=
e-break: after-white-space;">
<div>Today Microsoft issued an out-of-band patch to fix a vulnerability in =
Internet Explorer 6 through 11. The zero-day exploit (<a href=3D"http://www=
.sophos.com/en-us/threat-center/threat-analyses/vulnerabilities/VET-000596.=
aspx">CVE-2014-1776</a>) was identified
in targeted attacks against Internet Explorer 9 through 11 earlier this we=
ek.</div>
<div>
<div><br>
</div>
<div>Microsoft advises to download the security bulletin as soon as possibl=
e through Windows Update. For details on the patch see: <a href=3D"htt=
ps://technet.microsoft.com/library/security/ms14-021">MS14-021 : Security U=
pdate for Internet Explorer (2965111)</a></div>
<div><br>
</div>
<div>MIT WAUS has pushed the patch out to subscribers. Although a patch for=
IE on Windows XP was included in this fix, it is unlikely that the softwar=
e company will do this again. Microsoft reminds customers still running Win=
dows XP to upgrade to Windows 7
or 8 now. </div>
<div><br>
</div>
<div>Be sure to also use anti-virus software. <a href=3D"http://ist.mi=
t.edu/sophos">Sophos Anti-Virus</a>, available for free from the software d=
ownload page, protects against this virus.</div>
<div><br>
</div>
<div>For further reading, <a href=3D"http://www.usatoday.com/story/tech/201=
4/05/01/microsoft-issues-internet-explorer-security-fix/8562737/">
See the story: Microsoft issues Internet Explorer security fix</a>.</div>
<div><br>
<div apple-content-edited=3D"true">
<div style=3D"color: rgb(0, 0, 0); letter-spacing: normal; orphans: auto; t=
ext-align: start; text-indent: 0px; text-transform: none; white-space: norm=
al; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; word-w=
rap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-=
space;">
<div style=3D"color: rgb(0, 0, 0); letter-spacing: normal; orphans: auto; t=
ext-align: start; text-indent: 0px; text-transform: none; white-space: norm=
al; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; word-w=
rap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-=
space;">
Sincerely,<br>
<br>
Monique<br>
<br>
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D<br>
Monique Buchanan<br>
IT Security Communications Consultant<br>
Information Systems & Technology (IS&T)<br>
Massachusetts Institute of Technology<br>
<a href=3D"http://ist.mit.edu/secure">http://ist.mit.edu/secure</a><br>
tel: 617.253.2715<br>
<br>
<br>
</div>
</div>
</div>
<br>
</div>
</div>
</body>
</html>
--_000_A2C8BB6BB9F945F39F578045CD983EE3mitedu_--
--===============0870780921==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
ist-security-fyi mailing list
ist-security-fyi@mit.edu
To Unsubscribe http://mailman.mit.edu/mailman/listinfo/ist-security-fyi
--===============0870780921==--
