Critical Windows updates & unpatched Adobe vulnerabilities

September 17, 2010

On September 14, 2010, Microsoft released new patches for critical vulnerabilities in Windows, Microsoft Office, and IIS. In addition, Adobe has announced critical, unpatched vulnerabilities in Adobe Reader, Acrobat and Flash Player.

* All Windows PCs must be patched. *

To patch your PC:

Click on the update icon on the taskbar (it is a globe or yellow shield with an exclamation point, depending on which version of Windows you're running).

If you do not have such an icon, run Windows Update by going to the site:

http://windowsupdate.microsoft.com

After patching, you must reboot your PC in order for the patches to take effect.

Other patches:

If you are the administrator for an Active Directory server or a host running Active Directory Application Mode (ADAM) or AD LDS, see:

http://www.microsoft.com/technet/security/bulletin/MS10-068.mspx for information about critical vulnerabilities.

If you are the administrator for an IIS web server, see:

http://www.microsoft.com/technet/security/bulletin/MS10-065.mspx for information about critical vulnerabilities.

Critical unpatched Adobe vulnerabilities

There are critical unpatched vulnerabilities in the most recent versions of Adobe Reader, Adobe Acrobat, and Adobe Flash Player. Patches for these vulnerabilities are not scheduled to be released until late September and early October. SCS Facilities will send out announcements when the patches are released.

Please contact help@cs.cmu.edu or call the SCS Help Desk (x8-4231) if you have questions or problems with applying these patches.

Thank you for your attention,

SCS Help Desk