Home > Microsoft Security > Microsoft Security Advisory 960715 Update Rollup For Activex Kill Bits

Microsoft Security Advisory 960715 Update Rollup For Activex Kill Bits

The following class identifier relates to a request by Akamai to set the kill bit for a class identifier that is vulnerable. Note that the Server Core installation option does not apply to certain editions of Windows Server 2008; see Compare Server Core Installation Options. The class identifier (CLSID) for this ActiveX control is:{B4CB50E4-0309-4906-86EA-10B6641C8392} ActBar. The following Class Identifier relates to a request by IBM to set the kill bit for this ActiveX control that is vulnerable. As I mentioned, we do some of the non-security bulletins and we will cover the newest kill-bit update shortly... http://justjoomla.net/microsoft-security/microsoft-security-update-kb960714.html

Microsoft TechNet Security provides additional information about security in Microsoft products. The class identifiers (CLSIDs) for this ActiveX control are as listed in the Frequently Asked Questions section of this advisory.Research in Motion (RIM) AxLoader. Should I install this update if I do not have the affected component installed or use the affected platform? Yes. Useful SearchesRecent Posts Log in Sign up Windows Forum Windows Help and Support Forums > Windows Security > Security Alerts > Dismiss Notice Welcome to Windows Forums.

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0d080d7d-28d2-4f86-bfa1-d582e5ce4867}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\ActiveX Compatibility\{0d080d7d-28d2-4f86-bfa1-d582e5ce4867}]
"Compatibility Flags"=dword:00000400

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{29e9b436-dfac-42f9-b209-bd37bafe9317}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\ActiveX Compatibility\{29e9b436-dfac-42f9-b209-bd37bafe9317}]
"Compatibility Flags"=dword:00000400 You can apply Use Registry Editor at your own risk. Ben BenKus 27000468FT 478 Posts Re: Missing hotfixes ‏2009-02-19T01:57:03Z This is the accepted answer. To set the kill bit for a CLSIDs with a value of {B4CB50E4-0309-4906-86EA-10B6641C8392}, {E4F874A0-56ED-11D0-9C43-00A0C90F29FC}, and {FB7FE605-A832-11D1-88A8-0000E8D220A6}, paste the following text in a text editor such as Notepad.

I reran Secunia PSI and when fully current it detected a problem with IE7 but not the ActiveX application. I elected the manual update option and learned that I should install: MS09-002: Cumulative security update for Internet Explorer http://support.microsoft.com/kb/961260 Microsoft Security Advisory (960715) Update Rollup for ActiveX Kill Bits http://www.microsoft.com/technet/security/advisory... Customers who are interested in learning more about this update should review Microsoft Knowledge Base Article 960715. News Extraordinary Robot News FeedJoined:Jun 27, 2006Messages:26,340Likes Received:20 Revision Note: V1.2 (June 17, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this

For more information about Group Policy, see the TechNet article, Group Policy collection. Disclaimer The information provided in this advisory is provided "as is" without warranty of any kind. Akamai Technologies has released a security update that addresses a vulnerability in the affected component. International customers can receive support from their local Microsoft subsidiaries.

Delete the registry keys previously added in implementing this workaround.   Third-Party Kill Bits This update includes kill bits to prevent the following ActiveX controls from being run in Internet Explorer: A security feature in Microsoft Internet Explorer makes it possible to prevent an ActiveX control from ever being loaded by the Internet Explorer HTML-rendering engine. International customers can receive support from their local Microsoft subsidiaries. However, customers who install this update (960715) do not need to install the MS08-032 update to be protected with all the kill bits set in MS08-032.

Do I need to reapply this update if I install an ActiveX control discussed in this security update at a later date? Security Advisories and Bulletins Security Advisories 2011 2011 2562937 2562937 2562937 2659883 2641690 2639658 2607712 2588513 2562937 2524375 2506014 2501696 2501584 2491888 2490606 TOC Collapse the table of content Expand the Especially considering such updates have been published in the Windows Patch site before - recently in fact; 956391: Cumulative Security Update for ActiveX - Windows XP SP2/SP3 Patches for Windows (English) Why is Microsoft releasing this Update Rollup for ActiveX Kill Bits with a security advisory when previous kill bit updates were released with a security bulletin? Microsoft is releasing this Update Rollup

You can also apply it across domains by using Group Policy. http://justjoomla.net/microsoft-security/microsoft-security-essentials-won-39-t-update-windows-7.html Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. For more information, see Microsoft Knowledge Base Article 240797: How to stop an ActiveX control from running in Internet Explorer. Read more about the use of cookies on the Secunia website.

A security feature in Microsoft Internet Explorer makes it possible to prevent an ActiveX control from ever being loaded by the Internet Explorer HTML-rendering engine. Feedback You can provide feedback by completing the Microsoft Help and Support form, Customer Service Contact Us. Then, save the file by using the .reg file name extension.Windows Registry Editor Version 5.00[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{ XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX }]"Compatibility Flags"=dword:00000400You can apply this .reg file to individual systems by double-clicking it. http://justjoomla.net/microsoft-security/microsoft-security-essentials-offline-update.html ActBar.

This is done by making a registry setting and is referred to as setting the kill bit. Unanswered question This question has not been answered yet. What is a security update of ActiveX kill bits? A security update of ActiveX kill bits contains the class IDs (CLSID) of certain ActiveX controls that are the basis of the security

The kill bit will block Internet Explorer from running the control even if the control is installed at a later date.

ReferencesIdentification Microsoft Knowledge Base Article 960715 This advisory discusses the following software. For more information on this installation option, see the TechNet articles, Managing a Server Core Installation and Servicing a Server Core Installation. Related Software Microsoft Windows 2000 Service Pack 4 Windows XP Service Pack 2 and Service Pack 3 Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 The class identifiers (CLSIDs) for this ActiveX control are as listed in the Third-Party Kill Bits section of this advisory.

Continue Secunia Research Community Products Services Resources Free Trials Purchase Support Company Login VIM 4 CSI 7 Community Self-service Portal Partner Portal Overview Advisories Research Forums Create Profile Advisories Research Forums IBM has issued an advisory and an update that addresses vulnerabilities. See ASP.NET Ajax CDN Terms of Use – http://www.asp.net/ajaxlibrary/CDN.ashx. ]]> TechNet Products Products Windows Windows Server System Center Browser have a peek here The class identifiers (CLSIDs) for this ActiveX control are as listed in the Third-Party Kill Bits section of this advisory.

This is the accepted answer. We're trusting Secunia to make reasonable choices, right? This documentation is archived and is not being maintained.