Home > Microsoft Security > Microsoft Security Advisory 960715

Microsoft Security Advisory 960715

Related Software Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server Customers in the United States and Canada can receive technical support from Microsoft Product Support Services. A security feature in Microsoft Internet Explorer makes it possible to prevent an ActiveX control from ever being loaded by the Internet Explorer HTML-rendering engine. Remove the kill bit for the ActiveX control; this means that the security vulnerabilities are still exposed. (this is not recommended) 2. Check This Out

Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. Suggested Actions Review the Microsoft Knowledge Base Article that is associated with this advisory Microsoft encourages customers to install this update. Then, save the file by using the .reg file name extension. Built at 2014-04-18T13:49:36Z-07:00 Show: Inherited Protected Print Export (0) Print Export (0) Share IN THIS ARTICLE Is this page helpful?

What is a security update of ActiveX kill bits? A security update of ActiveX kill bits contains the class IDs (CLSID) of certain ActiveX controls that are the basis of the security What is a kill bit? Customers who require support should contact IBM.

  1. This kill bit is being set at the request of the owner of the ActiveX controls.
  2. Microsoft TechNet Security provides additional information about security in Microsoft products.
  3. Microsoft TechNet Security provides additional information about security in Microsoft products.
  4. The class identifiers (CLSIDs) for this ActiveX control are as listed in the Frequently Asked Questions section of this advisory.
  5. What is a security update of ActiveX kill bits? This security update only contains the class identifiers (CLSID) of certain ActiveX controls that are the basis of this security update.

We recommend that you install the latest Cumulative Security Update for Internet Explorer. Should I install this update if I do not have the affected component installed or use the affected platform? Yes. The following class identifier relates to a request by Akamai to set the kill bit for a class identifier that is vulnerable. The class identifiers (CLSIDs) for this ActiveX control are as listed in the Frequently Asked Questions section of this advisory.For more information about installing this update, see Microsoft Knowledge Base Article

Browse to the location of the extracted files.  Right-click on the .INF file, and choose ‘Install’ (this should take a matter of a couple of seconds and there will be no No, for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Kill Bits (950760) that is described in Microsoft Security Bulletin MS08-032. Impact of Workaround: There is no impact as long as the object is not intended to be used in Internet Explorer. For more information about Group Policy, visit the following Microsoft Web sites: Group Policy collection What is Group Policy Object Editor?

This kill bit is being set at the request of the owner of the ActiveX controls. Then, save the file by using the .reg file name extension. ActBar. A message stating the ‘DllRegisterServer in .ocx succeeded.’  Click ‘OK’. 8.

Replace {XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX} below with the Class Identifiers found in this section. https://technet.microsoft.com/en-us/library/security/969898.aspx Should I install this update if I do not have the affected component installed or use the affected platform? The class identifiers (CLSIDs) for this ActiveX control are as listed in the Frequently Asked Questions section of this advisory.Research in Motion (RIM) AxLoader. Recommendation: Review the referenced Knowledge Base Article and apply the appropriate update.

Extract the files from the .CAB 5. http://arnoldtechweb.com/microsoft-security/microsoft-security-bu.html Does this update contain kill bits that were previously released in an Internet Explorer security update? Does this update contain kill bits that were previously released in an Internet Explorer security update? Open the Excel workbook with the ActiveX control. 4.

Use Registry Editor at your own risk. V1.2 (June 17, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Impact of Workaround: There is no impact as long as the object is not intended to be used in Internet Explorer. http://arnoldtechweb.com/microsoft-security/microsoft-security-essentials-security-definition-updates.html Other Information Resources: You can provide feedback by completing the form by visiting Microsoft Help and Support: Contact Us.

Do I need to reapply this update if I install an ActiveX control discussed in this security update at a later date? No, reapplying this update is not required. After the kill bit is set, the control can never be loaded, even when it is fully installed. This update sets the kill bit for a list of class identifiers (CLSIDs).

Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly.

Why does this advisory not have a security rating associated with it? Automatic updating will still offer the MS08-032 update to customers regardless of whether or not they installed this update (960715). Yes, this update also includes kill bits that were previously set in Microsoft Security Advisory 956391. Manage Your Profile | Flash Newsletter | Contact Us | Privacy Statement | Terms of Use | Trademarks | © 2017 Microsoft © 2017 Microsoft

International customers can receive support from their local Microsoft subsidiaries. This update contains a kill bit for an update released previously in a service pack as well as kill bits for third-party controls not owned by Microsoft. No, this update does not include kill bits that were previously released in an Internet Explorer security update. http://arnoldtechweb.com/microsoft-security/is-microsoft-security-essentials-an-internet-security.html Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0d080d7d-28d2-4f86-bfa1-d582e5ce4867}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\ActiveX Compatibility\{0d080d7d-28d2-4f86-bfa1-d582e5ce4867}]
"Compatibility Flags"=dword:00000400

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{29e9b436-dfac-42f9-b209-bd37bafe9317}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\ActiveX Compatibility\{29e9b436-dfac-42f9-b209-bd37bafe9317}]
"Compatibility Flags"=dword:00000400 You can apply

The class identifier (CLSIDs) for this ActiveX control is:{29e9b436-dfac-42f9-b209-bd37bafe9317} Other Information Microsoft Active Protections Program (MAPP) To improve security protections for customers, Microsoft provides vulnerability information to major security software providers We recommend that you install the latest Cumulative Security Update for Internet Explorer. Note that the Server Core installation option does not apply to certain editions of Windows Server 2008; see Compare Server Core Installation Options.Why does this advisory not have a security rating This kill bit is being set at the request of the owner of the ActiveX control.