IE Web Page Active X Security Updates - Explained

Expand Post »

The two most recent IE security updates, MS05-038 and MS05-052, include defense-in-depth improvements that help prevent malicious web pages from loading and manipulating ActiveX controls that were not meant to run in IE. Prior to MS05-038 and MS05-052, IE included two main security checks around whether an ActiveX control can load and be manipulated by a web page:

Only allow ActiveX controls to load if they are not in the registry-stored “killbit�? list
Only allow loaded ActiveX controls to be manipulated if they have implemented IObjectSafety and therefore “promised�? they can be safely scripted

http://blogs.msdn.com/ie/archive/2005/11/04/489256.aspx

Similar Threads

print web page in JavaScript / DHTML / AJAX
As a newbie, where i should start from in linux? in Getting Started and Choosing a Distro
Web page authentication in ASP.NET
Change Web Page Font Size on the Fly in Windows tips 'n' tweaks
unable to load windows update web page in Viruses, Spyware and other Nasties

! !

Reputation Points: 11

Solved Threads: 0

Banned

Offline

195 posts
since Feb 2004

This thread is more than three months old

No one has posted to this discussion for at least three months. Please let old threads die and do not reply to them unless you feel you have something new and valuable to contribute that absolutely must be added to make the discussion complete. Otherwise, please start a new thread in this forum instead.

Previous Thread in Web Browsers Forum Timeline: PLZ Help Can't open links

Next Thread in Web Browsers Forum Timeline: Clearing "sticky" history on IE

DaniWeb Message

Cancel Changes

User Name
Password