7/02/2004: Internet Explorer Security Risk UPDATE
Microsoft advises users perform action on their Windows XP, 2000, Server 2003 computers to address recent malicious attacks against Internet Explorer, also know as Download.Ject. Instructions are available on the Microsoft site at:
If you have any questions please contact the BOL Help Desk at (310)825-7452, option 1, or at consult@ucla.edu.
Microsoft advises users to set their web browser security to the highest settings. A recent virus attack originating from a Russian server turned some Web sites into points of digital infection from which a home user can be infected by simply visiting a compromised web site from the Internet Explorer browser on a Windows computer. The compromised website attempts to infect a user by referring them to the server in Russia, which downloads software onto the users PC. Though the Russian server has been shut down, Internet Explorer users are not safe. A new culprit can easily use the same exploits to infect your computer.
Since Microsoft has yet to release a patch for this vulnerability, the Internet Explorer flaws that enabled the Russian attack still affect every user of the Internet Explorer browser. Microsoft advises users to set their browsers' security to the highest settings; however, doing so could break some Web functionality. Microsoft promises a patch for the flaws soon.
Internet Explorer users should follow Increase Your Browsing and E-Mail Safety instructions at the Microsoft website at:
Or use the BOL recommended browser Mozilla that is available at:
If you have any questions please contact the BOL Help Desk at (310)825-7452, option 1, or at consult@ucla.edu.