Bronc Notes Bulletin Digest

In the month of June 2012, the most significant security bulletins are from the following software publishers. All the bulletins have an update that can eliminate the known vulnerability, however, there is one Security advisory for Microsoft Windows which points to a vulnerability which does not have remediation.

• Apple Security Updates: 5 (Read official bulletin)
• Adobe Security bulletins and advisories: 4 (Read official bulletin)
• Microsoft Security bulletins: 7 (Read bulletin)

Microsoft has released Security Advisory 2719615 to address a vulnerability in Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0. This vulnerability may allow an attacker to execute arbitrary code if a user accesses specially crafted web pages using Internet Explorer. According to the advisory, this vulnerability is currently being exploited in the wild.

Read the Information Security blog post about the Security Bulletins for June 2012 for more information.

Personally-owned computers
We recommend that you take action if your computer is not configured to update automatically.

UTPA owned computers
If your computer is joined to the UTPA domain it will present a notification window on Thursday, June 21st, 2012. This notification will allow you to initiate the update process and get more information about the updates being installed. If your computers is not updated by 11:00pm it will initiate the update process automatically. If you do not update the machine through the new notification, it is important that you save everything that you are working on before leaving work on Thursday afternoon. If you have any questions concerning this security updates deployment, please contact the Help Desk at (956) 665-2020.

If your computer is not joined to the UTPA domain or running Mac OS X, it must be updated as soon as possible to be in compliance with our Desktop and Portable Computer Security Standard.

UTPA Information Security Office
www.utpa.edu/infosecurity