|SUMMARY:||Windows: Microsoft Security Update MS13-080 released for IE 0-day|
|REPORTER:||Jocelyn E Kasamoto (jocelyn)|
|START TIME:||Oct 10 09:42 AM|
|END TIME:||Oct 31 09:42 AM|
Microsoft released Security Update MS13-080 (KB2879017) which fixes the IE 0-day vulnerability (CVE-2013-3893) that could allow remote code execution. The out-of-band security advisory 2887505 was reported on Sept. 17, 2013 (http://www.hawaii.edu/technews/notice.php?id=250847). The IE 0-day vulnerability affects ALL versions of Internet Explorer (IE6, 7, 8, 9, 10, 11) and is rated critical.
Please run Windows Update as soon as possible, if you have not already done so. MS13-080 security update was released on Patch Tuesday, Oct. 8, 2013, with the rest of the Microsoft updates.
To confirm that your IE has been patched for this vulnerability, "Security Update for Microsoft Windows (KB2879017)" should be listed under your installed windows updates. Go to Start > Control Panel > Programs > Programs and Features. Click on "view installed updates".
If you have questions or need assistance, please contact the ITS Help Desk at 956-8883 or email firstname.lastname@example.org.
For more information
Microsoft Security Advisory: Vulnerability in Internet Explorer could allow remote code execution
Microsoft Security Bulletin MS13-080 - Critical
Cumulative Security Update of Internet Explorer (2879017)