Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: ActiveX FAQ SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
ActiveX FAQ

A reader pointed out an interesting set of Frequently Asked Questions done on Microsoft's blog site pertaining to the concept of a kill-bit which is really just a registry setting.  There are so many ActiveX exploits floating around out on the internet.  For example, on the February 4, fellow handler Mari posted a diary about 6 new ActiveX exploits

In order to protect your network and your systems, it is key you understand how to defend against this threat.  I highly recommend reviewing the three part series posted on Microsoft's site.  The URLs are below:

http://blogs.technet.com/swi/archive/2008/02/06/The-Kill_2D00_Bit-FAQ_3A00_-Part-1-of-3.aspx

http://blogs.technet.com/swi/archive/2008/02/07/The-Kill_2D00_Bit-FAQ_3A00_-Post-2-of-3.aspx

http://blogs.technet.com/swi/archive/2008/02/08/The-Kill_2D00_Bit-FAQ_3A00_-Part-3-of-3.aspx

Lorna

165 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!