it.ucsf.edu

Security Update:Microsoft Releases March 2015 Security Updates to Address Several Vulnerabilities (Including Freak)

Status Type

Security Update

Date and Time

Tuesday, March 10, 2015 - 11:24

Reason

Security Updates

Impact

Microsoft Users

WHAT HAPPENED?

Microsoft released their March 2015 updates to address 5 Critical and 9 Important vulnerabilities in Microsoft Windows and Internet Explorer.

One of the Important updates resolves a vulnerability in Microsoft Windows that facilitates exploitation of the publicly disclosed FREAK technique, an industry-wide issue that is not specific to Windows operating systems

Advanced Users: For a complete description of the security enhancements and affected software refer to Microsoft Security Bulletin Summary for March 2015 at https://technet.microsoft.com/library/security/ms15-mar.


AFFECTED SYSTEMS:

  • Internet Explorer
  • Microsoft Office
  • Microsoft Server Software
  • Microsoft Windows



WHAT'S THE PROBLEM?

Some of these vulnerabilities, if exploited, could allow remote code execution, security feature bypass, elevation of privilege, or disclosure of information.


HOW DO I PROTECT MY COMPUTER?

Update your software

  1. If you are supported by ITFS or have different IT support, no action on your part is required.
  2. If you do not have IT support or they do not support your computer, refer to Microsoft Security Bulletin Summary for March 2015 at https://technet.microsoft.com/library/security/ms15-mar on how to obtain the latest updates for your specific software.



RELATED LINKS