Notices
NSC-030917: Reports of exploit for MS03-039 in the wild
There are news reports circulating that an exploit for the vulnerability (flaw) that Microsoft announced in the MS03-039 bulletin has been released onto the Internet.
Please make every effort to ensure that all Windows computers have been patched up to current levels. If the exploits are as damaging as previous exploits (i.e., Blaster) we may find ourselves in the same network crisis situation that we experienced a few weeks ago.
The IT Security Office will continue to scan the campus network looking for unpatched machines. On Monday, scan results were parsed and distributed to building contact lists. Approximately 1200 Windows machines total were identified as not having the current patch level, and therefore vulnerable to the exploit(s) that have been released. Hopefully that number is far lower today!
Thank you for your continuing efforts to protect the IT assets of the University.