Wednesday, June 9, 2010

IE vulnerability: kill bits are killing me....

MS10-034 - Critical Cumulative Security Update of ActiveX Kill Bits

What is a kill bit?
A security feature in Microsoft Internet Explorer makes it possible to prevent an ActiveX control from ever being loaded by the Internet Explorer HTML-rendering engine. This is done by making a registry setting and is referred to as setting the kill bit. After the kill bit is set, the control can never be loaded, even when it is fully installed. Setting the kill bit makes sure that even if a vulnerable component is introduced or is re-introduced to a system, it remains inert and harmless.



Post a Comment

Subscribe to Post Comments [Atom]

<< Home