Important IT Security Bulletin: Vulnerability in Internet Explorer
A serious vulnerability in Microsoft Internet Explorer (IE) has gotten substantial press coverage since it was announced Monday. At this time, Microsoft has not released a fix, or announced that they will. The IT Security Office is aware of and monitoring the situation as it develops.
The easiest way to avoid problems is to use a different browser; we know that most of you already do. For those of you with work that requires Internet Explorer, if you restrict your use of IE to internal sites, the risk is negligible that this vulnerability will become a problem. For those of you who require IE for accessing sites outside the University, disabling the Flash plugin stops the currently known method of exploiting this vulnerability.
Since midday on Monday, the IT Security Office has been able to detect whether this vulnerability has been successfully exploited on campus. We have logged no occurrences of a successful exploit—thank you for your diligence in browsing cautiously. Security is our shared responsibility at KU, and following the recommendations above helps keep us all more secure.
If you need assistance with disabling Flash, or have further questions, please contact the Customer Service Center at 785-864-8080.