New Vulnerabilities Affecting Microsoft Windows, Access, Excel, PowerPoint, PowerPoint Viewer, and Internet Explorer Could Allow Personal Computers and File Servers to be Compromised. Immediate Action Required.
Wednesday, Aug. 13, 2008
Microsoft Corporation has announced six new critical security vulnerabilities affecting Microsoft Windows, Access, Excel, PowerPoint, PowerPoint Viewer, and Internet Explorer. CSSD recommends that users immediately identify and install the security updates necessary to repair these vulnerabilities by using the Pitt Software Update Service at updates.pitt.edu.
An attacker who successfully exploits any of these vulnerabilities could install programs; view, change, or delete data; or create new accounts with full user rights.
-
Microsoft Security Bulletin MS08-041 describes a vulnerability in the ActiveX control for the Snapshot Viewer for Microsoft Access.
-
Microsoft Security Bulletin MS08-043 describes four critical vulnerabilities in Microsoft Excel.
-
Microsoft Security Bulletin MS08-044 describes five critical vulnerabilities in Microsoft Office.
-
Microsoft Security Bulletin MS08-045 describes six critical vulnerabilities in Microsoft Internet Explorer.
-
Microsoft Security Bulletin MS08-046 describes a critical vulnerability in the Color Management System in Internet Explorer
-
Microsoft Security Bulletin MS08-051 describes three critical vulnerabilities in Microsoft PowerPoint and PowerPoint Viewer.
All Microsoft Windows users are strongly urged to use the Pitt Software Update Service to automatically download and install the latest Microsoft security updates and service packs as soon as they become available. The Pitt Software Update Service is available at updates.pitt.edu.
CSSD also recommends that all users install Symantec AntiVirus software and use the LiveUpdate feature to get the latest virus definitions. Symantec AntiVirus is available at no cost to students, faculty, staff, and departments from CSSD Software Licensing Services, 105 Bellefield Hall, and can also be downloaded from software.pitt.edu.
Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions regarding this announcement.