Macserver is down, we apologize for the inconvenience. IDSG and Apple are working to bring it back, hopefully some time tomorrow. If you require software on macserver please send IDSG an email. Thank you for your patience.
[Read more…] about MAC Server Down
Microsoft Security Bulletin for February 2006
Microsoft Security Bulletin Summary for February 14, 2006
Issued: February 14, 2006
Version Number: 1.0
Security patches defined by Microsoft as “critical” or “important”
MUST be applied within 10 business days of notification. Should there
be active exploits, the time will be adjusted and users will be
informed appropriately. Hosts unpatched after the defined time are
subject to scanning and removal from the EECS network as per campus IT security policies.
Patching is sometimes dependent on the service pack level of the
Microsoft OS, and installed applications, please read requirements
carefully.
Critical Security Bulletins
MS06-004—Cumulative Security Update for Internet Explorer (910620)
Impact: Remote Code Execution
Affected Software:
- Windows 2000 Service Pack 4
MS06-005—Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565)
Impact: Remote Code Execution
Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows Server 2003
Important Security Bulletins
MS06-006—Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution
(911564)
Impact: Remote Code Execution
Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 x64 Edition
MS06-007—Vulnerability in TCP/IP Could Allow Denial of Service
(913446)
Impact: Remote Denial of Service
Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
MS06-008—Vulnerability in Web Client Service Could Allow Remote
Code Execution (911927)
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
MS06-009—Vulnerability in the Korean Input Method Editor Could
Allow Elevation of Privilege (901190)
Impact: Elevation of Privilege
Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Microsoft Office 2003 Service Pack 1
- Microsoft Office 2003 Service Pack 2
- Microsoft Office 2003 Multilingual User Interface Packs
- Microsoft Office Visio 2003 Multilingual User Interface Packs
- Microsoft Office Project 2003 Multilingual User Interface Packs
- Microsoft Office 2003 Proofing Tools
- Microsoft Office Visio 2003
- Microsoft Office OneNote 2003
- Microsoft Office Project 2000
MS06-010—Vulnerability in PowerPoint 2000 Could Allow Information Disclosure (889167)
Impact: Information Disclosure
Affected Software:
- Microsoft Office PowerPoint 2000
imap.eecs down
The EECS IMAP server, imap.eecs.berkeley.edu, unexpectedly went offline shortly after 10:30pm. IRIS staff are investigating.
[Read more…] about imap.eecs down
Previous blocking of ICMP traffic from off campus to EECS networks has been lifted.
Previous blocking of ICMP traffic from off campus to EECS networks has been lifted.
BWRC Network Downtime
BWRC network will be down on Monday, February 13th and Tuesday, February 14th.
BWRC has been running on the original Bay Networks data switch hardware since the Center opened. We will transfer all data traffic to the new Extreme Networks “Alpine” switch. One to two days disruption will be involved for a significant fraction of the BWRC client machines.
During the initial part of the transfer process (2-4 hours), there will be no network connectivity at BWRC. After the initial period, all core servers and services should be back on line.
During the remainder of the process we will be hooking up the data connections for the regular BWRC clients. This is likely to last into a second day. Please use the EECS wireless network while you are waiting for your deskside machine to be hooked up.
If you have an urgent need for the earliest possible access, please reply indicating which port or cubicle you need access for and what the nature of the urgency is. We’ll review and give these requests priority as is possible.
Please make your plan accordingly.
HERMES, PRINT, RIS, WINSWW and macserver.eecs offline for patching Feb 15, 2006
Microsoft will release their patches for the month on Tuesday, February 14, 2006. HERMES, PRINT, RIS and WINSWW will be down for patching the following Wednesday, February 15, 2006, from 3:00p¿5:00p.
macserver.eecs.berkeley.edu, which hosts the Mac software warehouse, will be down for maintenance at this time as well.
ICMP blocked from off campus networks to EECS
In an effort to thwart continued ICMP attacks through our firewall, we have temporarily blocked ICMP from off campus networks to EECS.
This post will be updated when we return to our normal configuration.
Degraded network performance due to DOS attacks
We are currently seeing a high number of DOS (Denial Of Service) attacks coming from off campus and these are impeding the performance of our firewall. As such, there is intermittent connectivity from EECS to campus and the Internet. We are investigating to remedy the problem.
[Read more…] about Degraded network performance due to DOS attacks
Loss of connectivity to border router through EECS firewall
Beginning last evening and continuing off and on this morning, we have experienced some loss of connectivity to our border router through the EECS firewall. We are seeing very high CPU utilization on the firewall and, as a result, some packet loss to and from the border. I have opened a case with the vendor and we are actively pursuing the issue.
Please bear with us.
Soda Helpdesk on a Reduced Schedule Indefinitely
Due to continued staffing and scheduling constraints, the EECS Helpdesk in 313 Soda Hall will be operating on a reduced schedule and will be open 9:00a–1:00p, M–F from now on, unless otherwise noted.
This does not affect the Helpdesk in 395 Cory Hall, which will continue to be open during normal business hours.
We apologize for any confusion this may cause our customers in Soda Hall. We think that a reduced Helpdesk presence is better than none at all and will be working to increase our personel in order to be able to adequately staff both locations.