|Title||Start Date & Time||End Date & Time|
|Service Issue Updated: Campus Wireless||Monday, February 12, 2018 - 10:05am|
|Service Issue Updated: Northstar||Thursday, May 24, 2018 - 11:28am|
|Service Maintenance Scheduled: Campus Solutions & Portals||Sunday, June 24, 2018 - 6:00am||Sunday, June 24, 2018 - 6:00pm|
|Service Maintenance Scheduled: Network Services in Multiple Buildings||Tuesday, June 26, 2018 - 5:00am||Tuesday, June 26, 2018 - 7:30am|
|Service Maintenance Scheduled: Networks in Farrand, Cockerell, Sewall, Brackett, Aden||Monday, June 25, 2018 - 8:00am||Thursday, June 28, 2018 - 5:00pm|
Zimperium zLabs has disclosed a zero-day flaw in the Stagefright media playback engine that affects roughly 95% of Android devices. The flaw allows malware to be sent via the MMS application, and it requires no user interaction. This vulnerability may allow remote code execution and/or denial of service.
Android versions 2.2 to 5.1
Until a vendor provided patch is issued from Google, disabling auto retrieve of SMS/MMS may partially mitigate this vulnerability, see link below . According to Zimperium, Android devices older than 18 months are unlikely to receive an update at all.
Zimperium - Experts Found a Unicorn in the Heart of Android
Twilio Blog - How to Protect Your Android Phone From the Stagefright Bug
VB - Researchers find vulnerability that affects 95% of Android devices
Threat Post - Android Stagefright Flaw put 950 million devices at risk
Additional information about this vulnerability can be viewed at:
If you have any questions, please contact the IT Service Center at 303-735-4357 (or 5-HELP from an on-campus phone) or firstname.lastname@example.org.
OIT has defined the following categories to describe the severity of security risks:
URGENT severity represents a broad threat to the entire campus community.
SEVERE severity included remote exploits and worms.
IMPORTANT severity includes virus and local exploits for commonly used services.