Security Alert: Critical Windows Update (MS04-022, MS04-023) (07/13/04)
Microsoft has identified a new set of vulnerabilities in Windows XP, Windows 2000, Windows Server 2003, Windows NT, Windows 98, and Windows Me. One of the critical-level vulnerabilities affects Internet Explorer 6.
CIT urges all Windows users to obtain and install the latest security patches through Microsoft Windows Update (http://windowsupdate.microsoft.com/) as soon as possible. If you are on a departmental network, please check with your local technical support staff for guidance on updating your system.
Computers running Windows 95 or non-Windows systems, such as Mac OS or Linux, are not affected. However, Virtual PC on Mac OS systems can be affected by these vulnerabilities.
DetailsHackers can use these vulnerabilities to run programs of their choice on unprotected computers. Future Internet worms exploiting these vulnerabilities could potentially cause as much disruption and delay as earlier worms did last year.
For more information, see
Windows Security Updates for July 2004, http://www.microsoft.com/security/bulletins/200407_windows.mspx or
Microsoft Security Bulletin Summary for July, 2004 http://www.microsoft.com/technet/security/bulletin/ms04-jul.mspx
If you need assistance, please contact the CIT Contact Center (HelpDesk) by calling 255-8990, by sending e-mail to helpdesk@cornell.edu, or by visiting 119 CCC. The Contact Center is open Monday-Friday from 8:00 a.m. to 5:00 p.m., with extended phone hours Monday-Thursday from 5:00 p.m. to 8:00 p.m. during the academic year. If the Contact Center is closed and your problem is urgent, contact the Network Operations Center at 255-9900.
You can receive messages like this via e-mail by subscribing to the CIT-Alert-L mailing list, which is used to distribute announcements about significant disruptions or threats to the campus computing and telecommunications environment. Visit the CIT-Alert-L subscription page.
Last modified: June 04, 2007