Monday, April 28, 2014 - 1:23pm

Internet Explorer Zero Day Alert

update 05/02/2014

Information on how to check if you have applied the Microsoft patch, and apply it.

To check if your Windows system has applied the specific patch, check your Windows Update History (Start->type "Windows Update", return->View update history) and look for an update with "KB2964358" in the name ("KB2964444" on certain systems).

If your systems has not yet applied the patch (or even if it has) please check your automatic update status and apply updates if necessary:

  1. Click Start, then type "Windows Update" and press return.
  2. Click on "Change Settings" on the left side
  3. Make sure the first drop-down box says "Install updates automatically (recommended)"
  4. Click the 'OK' button at the bottom
  5. Click the "Check for updates" text on the left to initiate the update check
  6. When the check has completed, click "Install Updates" if any updates were found
  7. You may be prompted to restart your computer to finish installing updates
  8. Repeat steps 5-7 until you see "Windows is up to date"

update 05/01/2014 

Microsoft has released a patch for Internet Explorer. Once this patch is applied, use of Internet Explorer is permitted. Even though a patch was released for Windows XP, ASU still recommends against using this operating system, and will continue to monitor use of Windows XP on ASU's networks. To apply the update, use Windows Update, and for more information, see Microsoft's article: http://support.microsoft.com/kb/2964358.

update 04/30/2014

We have received several questions on how to change your default browser so that clicking hyperlinks will not open with Internet Explorer. Here are instructions to set your default browser to:
Firefox: https://support.mozilla.org/en-US/kb/how-make-web-links-open-firefox-
default
Chrome: https://support.google.com/chrome/answer/95417?hl=en

update 04/29/2014

The following are recommendations for common ASU business sites:

Hyperion/MyReports: Use the MyApps customized MyReports environment. Instructions here: https://asu.service-now.com/kb_view.do?sys_kb_id=1d9307ab6fb8e1004ba2cb512e3ee46b

Peoplesoft: Use an alternate browser other than Internet Explorer. See this page for browser configurations to assist with ease of use of Peoplesoft: https://asu.service-now.com/ess/kb_view.do?sysparm_article=KB0011009

As mentioned previously, please use an alternate browser for any and all possible university business or other web browsing.

original announcement 04/28/2014

Announced today, Internet Explorer versions 6 through 11 are vulnerable to attack. All ASU faculty and staff should use an alternate browser (Firefox, Chrome, etc.), following the official recommendation from the Computer Emergency Readiness Team (US-CERT) at least until an official update is available. For those users of Windows XP, no update is planned, as XP is now out of support.

http://www.us-cert.gov/ncas/current-activity/2014/04/28/Microsoft-Internet-Explorer-Use-After-Free-Vulnerability-Being

ASU Faculty/Staff please click here for internal information about Windows XP systems:
https://docs.google.com/a/asu.edu/file/d/0B7bqVGx3GJQbcjBnaXIxSlNDRnc/edit (you must log in with your ASU Gmail, and not a personal Gmail account to access this link).