[Elluciansupport] [Ellucian Cloud status] Scheduled : Security Notification - Windows HTTP.sys Critical Vulnerability MS15-034 (CVE-2015-1635)

[Hahn, Lenell]

Martha,
What is the impact of this email? Is this something that needs to be acted upon?
Thanks,
Lenell

Sent from my iPad

On Apr 15, 2015, at 2:28 PM, "eoc at ellucian.com<mailto:eoc at ellucian.com>" <eoc at ellucian.com<mailto:eoc at ellucian.com>> wrote:

Security Notification - Windows HTTP.sys Critical Vulnerability MS15-034 (CVE-2015-1635)<http://stspg.io/ySU>
Apr 15, 15:30 EDT  -  Apr 16, 13:00 EDT


Maintenance Details
ELLUCIAN CLOUD SERVICES
Security Notification
Windows HTTP.sys Critical Vulnerability MS15-034 (CVE-2015-1635)

Ellucian Cloud Services is aware of (CVE-2015-1635), which could impact Windows systems by allowing an attacker to perform remote code execution by sending a specific HTTP request to an affected Windows system.
The vulnerability has taken priority because proof-of-concept code has been released on the internet, specifying how to exploit this vulnerability.
This issue has been rated critical on all supported versions of the following Windows Systems:

• Windows 7
• Windows Server 2008 R2
• Windows 8
• Windows Server 2012
• Windows 8.1
• Windows Server 2012 R2

Mitigation - (CVE-2015-1635)

To protect against (CVE-2015-1635), Microsoft, on 4/14/2015, released patch MS15-034 to mitigate the critical vulnerability inside Windows HTTP.sys.

Ellucian Information Security has implemented an emergency change and applied patch MS15-034. As a result, All Windows systems have been patched to protect against this vulnerability.

Windows systems do not require an immediate reboot. Reboots will occur during the established standard maintenance window.

Contact: If you have any questions or concerns about this notification or would like to discuss any aspect of the upcoming maintenance, please contact the EOC at (866) 614-5012 or your engagement manager who can arrange a meeting with the appropriate technical personnel.

Thank You,
Your Ellucian Cloud Services Team
Apr 15, 15:27 EDT

This scheduled maintenance affects: Network, Firewall, Ellucian Elevate, Ellucian eTranscripts, Ellucian Mobile Cloud, Ellucian Pilot, Ellucian Recruiter, and Monitoring.
View status page<http://status.elluciancloud.com> or manage your subscription<http://status.elluciancloud.com/manage/cjxmbmn6l2nf> to these emails.
Powered by StatusPage.io<https://www.statuspage.io/?utm_campaign=end_user_notification_emails&utm_source=status.elluciancloud.com>


_______________________________________________
EllucianSupport mailing list
EllucianSupport at newlist.semo.edu<mailto:EllucianSupport at newlist.semo.edu>
http://newlist.semo.edu/mailman/listinfo/elluciansupport
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://newlist.semo.edu/pipermail/elluciansupport/attachments/20150415/44b17659/attachment.html