November 22, 2002 Announcements
Microsoft
Alerts Windows Operating System Users to Security Issue
Anyone who browses the Internet, checks email, or hosts a Web
site with a Microsoft Windows operating system needs to apply
a security update that was made public Thursday, November 21
by Microsoft.
According to a release from Microsoft, an attacker who successfully
exploits the security vulnerability could gain complete control
of the system and gain the ability to take any action that the
legitimate user could take.
This could include creating, modifying or deleting data on the
system, reconfiguring it, reformatting the hard drive, changing
Web pages, or running programs of the attacker’s choice,
said Stephen Funk, USU Helpdesk Supervisor.
The vulnerability poses a risk both to Web servers and Web clients,
and Microsoft strongly recommends that all users take action
immediately to ensure that their systems are protected.
Anyone using Microsoft Windows 2000, Windows Me, Windows 98,
or Windows NT needs the update. Windows XP is not affected.
Earlier versions than those mentioned are no longer supported
by Microsoft and may or may not be affected by the vulnerability.
A patch was created to address the vulnerability and can be
downloaded and installed from http://www.microsoft.com/downloads/Release.asp?ReleaseID=44733.
Funk said, "This is the first time I have seen an update
that affects every version." He said it is important for
everyone to install the update.
Those who browse the Web with Internet Explorer are especially
at risk, as are those who have Microsoft Data Access Components
(MDAC) on their computers. According to Microsoft, almost all
computers have Microsoft Data Access Components installed. MDAC
is a part of many versions of Windows and Microsoft applications.
It gives programs the ability to access data sources indirectly.
This is used on the Internet frequently.
An unchecked buffer in one of Microsoft Data Access Components
caused the vulnerability. A buffer is a temporary storage area
for data. An unchecked buffer is dangerous because it can be
overrun with random data and will corrupt memory, leading to
program or operating system failure.
Any faculty, staff, administrator or student at Utah State University
who has questions regarding this update can call the Helpdesk
at 797-4358.
By Danielle Hegsted
Fire Marshal Posts State Requirements for Campus
Christmas Trees
TO: Faculty, Staff, and Students
FROM: Gene Fehlman, Fire Marshal
DATE: November 5, 2002
SUBJECT: State requirements for Christmas trees
As we approach another holiday season I would like to remind
all University Personnel and students of the state requirements
regarding Christmas trees in University and other public buildings.
Use of artificial trees is strongly recommended. Artificial
trees shall be listed, "flame retardant," by a nationally
recognized laboratory, such as UL or equivalent. However, if
it is decided to use a natural tree it must be treated with
a flame retardant. The trunk shall have a fresh butt cut at
least one inch above the original cut. The tree should be displayed
in a stable stand that can be filled with water. Don’t
display trees in locations that would obstruct exit ways. Keep
trees away from all heat sources such as portable space heaters,
radiators, and heat vents.
Use only UL listed electric lights in good condition without
frayed wiring, loose connections, or broken sockets. Ganging
or plugging together too many strings of lights or improper
use of extension cords may overload the circuits.
Tree decorations should be non-combustible or flame retardant.
Candles are strictly prohibited. Never leave the lights on overnight
when no one is present.
As an additional reminder with the colder weather approaching,
the use of portable space heaters becomes prevalent and a real
concern. We have experienced several fires in the past due to
improper use and placement of space heaters. Should the use
of space heaters be necessary for personal comfort keep them
at least three feet from any combustible material such as wood
desks, plastic waste cans, vinyl chairs, etc. Make sure the
heaters are never left on unattended, double check before going
home after work, and use only UL or other nationally recognized
laboratory tested and listed heaters. Check to see if the heater
has an automatic turn off switch that will deactivate the heater
should it be accidentally tipped over. Plug space heaters directly
into a wall outlet, never plug them into your computers surge
protector bar.
We all appreciate your assistance in making this a most joyous
and fire safe holiday season.
utah
state today/archives/November
2002/archives
prior to Sept 2002/
Brought
to you by Utah State University Public Relations and Marketing
|