New Vulnerability Affecting Microsoft PowerPoint Could Allow Personal Computers to be Compromised. Immediate Action Required.
Tuesday, May 12, 2009
Microsoft Corporation has announced a new critical security vulnerability affecting all versions of PowerPoint on Microsoft Windows platforms. CSSD recommends that users immediately identify and install the security update necessary to repair this vulnerability by using the Pitt Software Update Service.
To use the Pitt Software Update Service, visit technology.pitt.edu, select "Pitt Software Update Service" from the Quick Launch menu on the main page, and follow the instructions.
Microsoft Security Bulletin MS09-017 describes a critical vulnerability in Microsoft PowerPoint. This vulnerability could allow remote code execution if a user opens a specially crafted PowerPoint file.
An attacker who successfully exploits this vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.
All Microsoft Windows users are strongly urged to use the Pitt Software Update Service to automatically download and install the latest Microsoft security updates and service packs as soon as they become available.
CSSD also recommends that all users install Symantec AntiVirus software and use the LiveUpdate feature to get the latest virus definitions. Symantec AntiVirus is available at no cost to students, faculty, staff, and departments from CSSD Software Licensing Services, 105 Bellefield Hall, and can also be downloaded from software.pitt.edu.
Please contact the Technology Help Desk at 412 624-HELP [4357] if you have any questions regarding this announcement.