|
|
|
Microsoft Internet Explorer Vulnerability Actions |
|
|
Yesterday Microsoft announced that versions 6 to 11 of it's web browser, Internet Explorer (IE), contains vulnerabilities that might allow an attacker to compromise your PC. This is especially of importance for those clients still running the Windows XP operating system as Microsoft will NOT be developing a patch for that operating system. The Internet Explorer bug is the first high-profile computer threat to emerge since Microsoft stopped providing security for Windows XP earlier this month. This means that PC's running this 13 year old operating system will remain unprotected even after Microsoft patches other versions of IE for Windows Vista, Windows 7, and Windows 8. LTS is advising users of Windows XP to not only follow our previous upgrade recommendations to migrate from hosts running XP, but to also STOP any current use of Internet Explorer on XP for any web browsing. Use of of IE with trusted Lehigh sites such as Banner may be considered as acceptable use, but any general web browsing to a compromised web site may lead to PC compromise. Thus, we are also asking other all IE users to consider using alternatives to Microsoft Corp's Internet Explorer browser for general web browsing, until the company fixes this security flaw. Keith K Hartranft, CISSP |