Microsoft Vulnerability a Critical Security Issue on Campus

Users on campus are being warned about a vulnerability for all Windows-based systems. Known as the "WMF Vulnerability," (Windows Metafile image format), malicious code can be embedded in images and allow hackers access. This vulnerability can be exploited if a user is simply viewing images on Google, from e-mail, or through Instant Messenger.

University IT Services recommends that all users campus-wide restrict Web browsing to "safe" places. Do not go to sites that you have never been to before, including any Web site where a hacker might upload infected image files that the Web site administrator has little control over (i.e., ebay.com or Google Images).

Not all anti-virus software products are currently able to detect this vulnerability. However, University IT Services recommends that users update anti-virus protection as frequently as possible to provide maximum protection as new vulnerabilities occur.

Microsoft has release a patch for this vulnerability, which can be found at the Windows Update Center.

University IT Services urges all users on campus with Windows-based systems to realize this is a critical security issue that should be taken seriously. For continual updates on the situation, users can go to http://uits.uark.edu or http://security.uark.edu.

For more in-depth information regarding this vulnerability, users can go to http://security.uark.edu/news/index_3444_ENG_HTML.htm

For questions, comments or concerns, please contact University IT Services Help Desk at 479-575-2905.