• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer BR549.DLL ActiveX Control Buffer Overflow Vulnerability

Solution:
Microsoft has released fixes. This fix is designed to set the Kill Bit on the BR549.dll ActiveX control. This action will prevent the control from running or from being reintroduced onto an affected system:


Microsoft Internet Explorer 6.0 SP1

• Microsoft Cumulative Patch for Internet Explorer (822925)
  For all versions of Internet Explorer except Internet Explorer for Windows 2003.
  http://www.microsoft.com/windows/ie/downloads/critical/822925/default. asp


• Microsoft Cumulative Patch for Internet Explorer (822925)
  For Internet Explorer 6.0 for Windows Server 2003.
  http://www.microsoft.com/windows/ie/downloads/critical/822925s/default .asp

Microsoft Internet Explorer 5.5 SP2

• Microsoft Cumulative Patch for Internet Explorer (822925)
  For all versions of Internet Explorer except Internet Explorer for Windows 2003.
  http://www.microsoft.com/windows/ie/downloads/critical/822925/default. asp

Microsoft Internet Explorer 6.0

• Microsoft Cumulative Patch for Internet Explorer (822925)
  For all versions of Internet Explorer except Internet Explorer for Windows 2003.
  http://www.microsoft.com/windows/ie/downloads/critical/822925/default. asp

Microsoft Internet Explorer 5.0.1 SP3

• Microsoft Cumulative Patch for Internet Explorer (822925)
  For all versions of Internet Explorer except Internet Explorer for Windows 2003.
  http://www.microsoft.com/windows/ie/downloads/critical/822925/default. asp