Threat Level: green Handler on Duty: Daniel Wesemann

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

ActiveX FAQ

Published: 2008-02-10
Last Updated: 2008-02-10 19:39:39 UTC
by Lorna Hutcheson (Version: 1)
0 comment(s)

A reader pointed out an interesting set of Frequently Asked Questions done on Microsoft's blog site pertaining to the concept of a kill-bit which is really just a registry setting.  There are so many ActiveX exploits floating around out on the internet.  For example, on the February 4, fellow handler Mari posted a diary about 6 new ActiveX exploits

In order to protect your network and your systems, it is key you understand how to defend against this threat.  I highly recommend reviewing the three part series posted on Microsoft's site.  The URLs are below:

http://blogs.technet.com/swi/archive/2008/02/06/The-Kill_2D00_Bit-FAQ_3A00_-Part-1-of-3.aspx

http://blogs.technet.com/swi/archive/2008/02/07/The-Kill_2D00_Bit-FAQ_3A00_-Post-2-of-3.aspx

http://blogs.technet.com/swi/archive/2008/02/08/The-Kill_2D00_Bit-FAQ_3A00_-Part-3-of-3.aspx

Keywords:
0 comment(s)
Diary Archives