- It's the applications, stupid
- Will a whitelist save personal computing?
- Thousands of Web sites under attack
- To solve the unsolvable problem
- Re-thinking the security of virtual machines
- Security Development Lifecycle trumps code complexity
- Is your Web site FIPS compliant?
- Computer security: Why have least privilege?
- Strategic security: Get a handle on authentication
- Control user installs of software
March 20, 2006 | Comments: (0)
IE ActiveX update-could have a big impact
Microsoft will release an ActiveX component update in an upcoming IE security patch.
I could have a big impact in some companies. Windows system administrators are encouraged to test and understand it thoroughly.
Here's the related link:
http://blogs.technet.com/upstate-ny-technology/archive/2006/03/20/422522.aspx
Update: Link removed by Microsoft due to some possible mis-communications in it. Here's the straight scoop:
This patch was released as an optional update for Internet Explorer on WU/MU on 2/28/06 and is also included in IE 7 Beta2. It will be released as mandatory in future security patch, the date of which has not yet been determined.
Posted by Roger Grimes on March 20, 2006 02:08 PM
RATE THIS ARTICLE:
-
- COMMENTS
Ack, link was removed by Microsoft because it contain an inaccuracy. I'll post the relevant material in a revised post.
Posted by: Roger A. Grimes at March 21, 2006 10:36 AMMicrosoft has granted a 60-day reprieve by means of another patch. See http://blogs.technet.com/msrc/archive/2006/03/29/423560.aspx
Posted by: Bernard Farrell at March 29, 2006 02:50 PM
