Educause Security Discussion mailing list archives

Windows 0-day

From: David Opitz <DOpitz () LOYOLA EDU>
Date: Wed, 21 Jul 2010 09:46:38 -0400

Hi,

I'm wondering what everyone is doing about the current Microsoft 0-day exploit.  Details are at: 
https://isc.sans.edu/diary.html?storyid=9190 and at http://www.microsoft.com/technet/security/advisory/2286198.mspx .

Microsoft recommends 3 Workarounds until they get a patch out:
1) Disable the displaying of icons for shortcuts
2) Disable the WebClient service
3) Block the download of LNK and PIF files from the Internet.

Which of those 3 (if any) are you using on your campus?  We are considering doing the first one, but this would change 
how shortcuts are displayed on users' desktops, so we would have to communicate this to all of our users.

Peace,
Dave Opitz
Sr. Security Analyst
Infrastructure Services - Technology Services 
Loyola Univeristy Maryland
4501 N. Charles St.
Baltimore, MD, 21210
dopitz () loyola edu

Current thread:

Re: Phishing Links, (continued)
- - - Re: Phishing Links Jeff Kell (Jul 07)
- Re: Phishing Links Justin Azoff (Jul 07)
  - Re: Phishing Links David Escalante (Jul 07)
- Re: Phishing Links Eric Case (Jul 07)
  - Re: Phishing Links Joel Rosenblatt (Jul 07)
- Re: Phishing Links Flynn, Gary - flynngn (Jul 07)
  - Re: Phishing Links Pete Hickey (Jul 07)
    - Re: Phishing Links Martin Manjak (Jul 07)
    - Re: Phishing Links Ben Woelk (Jul 07)
    - Re: Phishing Links Martin Manjak (Jul 20)
    - Windows 0-day David Opitz (Jul 21)
    - Re: Windows 0-day Greg Williams (Jul 21)
    - Re: Windows 0-day Greg Williams (Jul 27)
  - Re: Phishing Links Ben Woelk (Jul 07)
    - Re: Phishing Links Flynn, Gary - flynngn (Jul 07)
- Re: Phishing Links Greg Vickers (Jul 07)
  - Re: Phishing Links James Farr '05 (Jul 08)