[IS&T Security-FYI] Microsoft issues emergency fix for Internet Explorer
Monique Buchanan
myeaton at MIT.EDU
Thu May 1 15:17:52 EDT 2014
Today Microsoft issued an out-of-band patch to fix a vulnerability in Internet Explorer 6 through 11. The zero-day exploit (CVE-2014-1776<http://www.sophos.com/en-us/threat-center/threat-analyses/vulnerabilities/VET-000596.aspx>) was identified in targeted attacks against Internet Explorer 9 through 11 earlier this week.
Microsoft advises to download the security bulletin as soon as possible through Windows Update. For details on the patch see: MS14-021 : Security Update for Internet Explorer (2965111)<https://technet.microsoft.com/library/security/ms14-021>
MIT WAUS has pushed the patch out to subscribers. Although a patch for IE on Windows XP was included in this fix, it is unlikely that the software company will do this again. Microsoft reminds customers still running Windows XP to upgrade to Windows 7 or 8 now.
Be sure to also use anti-virus software. Sophos Anti-Virus<http://ist.mit.edu/sophos>, available for free from the software download page, protects against this virus.
For further reading, See the story: Microsoft issues Internet Explorer security fix<http://www.usatoday.com/story/tech/2014/05/01/microsoft-issues-internet-explorer-security-fix/8562737/>.
Sincerely,
Monique
==========================
Monique Buchanan
IT Security Communications Consultant
Information Systems & Technology (IS&T)
Massachusetts Institute of Technology
http://ist.mit.edu/secure
tel: 617.253.2715
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/ist-security-fyi/attachments/20140501/7d6e72e0/attachment.htm
More information about the ist-security-fyi
mailing list