Microsoft warns IE users of another ActiveX vulnerability


Microsoft warns IE users of another ActiveX vulnerability

Warwick Ashford

Microsoft is warning Internet Explorer users of attacks that attempt to exploit an ActiveX vulnerability affecting MS Office and ISA Server.

This is the second warning in just over a week of an ActiveX vulnerability that could allow attackers to take control of users' PCs through websites infected with malicious code.

The latest ActiveX hole is in Microsoft Office Web Components ActiveX controls.

The security risk affects Office XP, Office 2003, ISA Server 2004 and 2006, and Office Small Business Accounting 2006.

Users can prevent Web Components from running in IE using a manual workaround or Microsoft's automatic Fix-it tool.

Microsoft said it is working on a security update for all affected software.

Microsoft security advisory >>.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy