Skip to body

Campus Notices

Internet Explorer Vulnerability

A serious vulnerability was identified in Internet Explorer over the weekend. It was serious enough that the Department of Homeland Security (DHS) issued an alert advising people to stop using it until it could be patched by Microsoft. 

The United States Computer Emergency Readiness Team (US-CERT), part of DHS, issued the notice saying: "US-CERT is aware of active exploitation of a use-after-free vulnerability in Microsoft Internet Explorer...this vulnerability affects IE versions 6 through 11 and could lead to the complete compromise of an affected system."

While there are some technical workarounds for this vulnerability, there are no known fixes at this time. The Security Services and Information Services departments are investigating the feasibility of implementing these workarounds until Microsoft releases a patch. 

In the meantime, we recommend that you only use Internet Explorer for internal websites hosted by CWU (e.g. myCWU) and affiliated third-party vendors (e.g. Canvas). In the event you need to visit a non-CWU website, we recommend you use a different browser - such as Google Chrome or Mozilla Firefox - or wait until a patch has been released. 

We will keep you posted on any developments. If you have any question or want more information on this topic, please do not hesitate to reach out to me.

Andreas Bohman/CISO

Notice Type: