Information Technology Services

On Monday April 28th the National Cybersecurity and Communications Integration Center (NCCIC) and US Computer Emergency Readiness Team (US-CERT) announced a vulnerability found in Internet Explorer.  This vulnerability could leave your computer susceptible to a hacker.

There is currently no fix for this vulnerability.  At this time we are following the Department of Homeland Security’s recommendation that everyone please refrain from using Internet Explorer. If you must use Internet Explorer for specific work applications please exercise caution.

In place of Internet Explorer you can use Firefox (http://www.mozilla.org/en-US/firefox/new/) or Google Chrome (https://www.google.com/intl/en/chrome/browser/).

For further information about the vulnerability please see the release below.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

From: US-CERT [US-CERT@ncas.us-cert.gov]
Sent: Monday, April 28, 2014 9:20 AM
Subject: Microsoft Internet Explorer Use-After-Free Vulnerability Being Actively Exploited

National Cyber Awareness System:

Microsoft Internet Explorer Use-After-Free Vulnerability Being Actively Exploited

04/28/2014 06:19 AM EDT

 

Original release date: April 28, 2014

US-CERT is aware of active exploitation of a use-after-free vulnerability in Microsoft Internet Explorer. This vulnerability affects IE versions 6 through 11 and could lead to the complete compromise of an affected system.

US-CERT recommends that users and administrators enable Microsoft EMET where possible and consider employing an alternative web browser until an official update is available.

For more details, please see VU#222929.

This product is provided subject to this Notification and this Privacy & Use policy.