• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer ActiveX Control Kill Bit Bypass Vulnerability

Solution:
Microsoft has confirmed that this issue is addressed in Microsoft Security Bulletin MS05-054. Apply the updates from MS05-054 to address this vulnerability.


Microsoft Internet Explorer 6.0 SP1

• Microsoft Cumulative Update for Internet Explorer 6 SP1 (KB905915)
  For Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4 or on Microsoft Windows XP Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?familyid=A8443CD2-D98D -427B-9F0E-BD7E19FCB994&displaylang=en

Microsoft Internet Explorer 6.0

• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 (KB905915)
  For Internet Explorer 6 for Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
  http://www.microsoft.com/downloads/details.aspx?familyid=9D70FB20-C7C9 -43AF-A864-6DBC9A542CC6&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 64-bit Itanium Edition (KB905915)
  For Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?familyid=1EE790B9-E596 -4344-AEC3-FCB3289D7E9C&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 x64 Edition (KB905915)
  For Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
  http://www.microsoft.com/downloads/details.aspx?familyid=8E9C23E5-7988 -42DA-A8BD-2C1A534BF995&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows XP Service Pack 2 (KB905915)
  For Internet Explorer 6 for Microsoft Windows XP Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=E4B5BA57-D4F2 -4798-9154-2869E371C9D1&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows XP x64 Edition (KB905915)
  For Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
  http://www.microsoft.com/downloads/details.aspx?familyid=E1652B4A-6339 -4B31-8ACF-D2A844C24F70&displaylang=en

Microsoft Internet Explorer 5.0.1 SP4

• Microsoft Cumulative Update for Internet Explorer 5.01 Service Pack 4 (KB905915)
  For Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4
  http://www.microsoft.com/downloads/details.aspx?familyid=4005B74A-D6E6 -4A32-A3B1-276686B4A428&displaylang=en