Today Microsoft has released an out-of-cycle patch (MS07-017) to address
serious vulnerabilities in Microsoft Windows operating systems. One of
these, the Windows Animated Cursor Remote Code Execution Vulnerability
(CVE-2007-0038), allows for the remote execution of malicious code and
is currently being actively exploited. Due to the severity of the issue
SNS recommends urgent, out-of-cycle patching to address this
vulnerability. Please see
http://www.microsoft.com/technet/security/Bulletin/MS07-017.mspx for
more information.
SNS has deployed IDS signatures to check for Windows Animated Cursor
Vulnerability exploits, but due to staffing issues there may be a delay
in notification for IP addresses seen to download the exploit code.
Please ensure that campus systems are patched as soon as possible to
prevent compromises from this serious vulnerability.
Thank You,
Allison Henry
System and Network Security
University of California, Berkeley
http://security.berkeley.edu
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
To learn more about Micronet, including how to subscribe to
or unsubscribe from its mailing list and how to find out
about upcoming meetings, please visit the Micronet Web site:
http://micronet.berkeley.edu/
Received on Tue Apr 03 2007 - 12:50:12 PDT
This archive was generated by hypermail 2.2.0 : Tue Apr 03 2007 - 12:50:13 PDT