[tuliper]

This is weird. I applied the fix that I downloaded directly from Microsoft's web site:

http://support.microsoft.com/kb/972890#Fixed

and I couldn't notice any difference in the behavior of Internet Explorer.

Yes, I could see the changes in the registry, but when I go to a web site like this:

http://www.microsoft.com/windows/int...er/videos.aspx

The video plays with the fix applied (even after rebooting the computer).

Wasn't the fix supposed to disable media player video inside Internet Explorer?

So what does this fix do? I don't understand?

Thanks!

[Blackmirror]

No it is protect you against active x infections when you load a page up
as far as i know
however i would use spywareblaster as well

[tuliper]

Blackmirror, thanks for your answer but I didn't understand it. I know that it is to protect against Vulnerability in Microsoft Video ActiveX control that could allow remote code execution.

But I have NO WAY OF VERIFYING this. Microsoft didn't post any instructions as to how to verify that the fix indeed protects against active x infections when I load a page up.

But they do ask in their web page "Did it fix the problem?"

How am I supposed to know if it fixed the problem if they don't provide any information as to how to check whether it fixed the problem???

I am sure there are quite a few people here smarter than the geniuses in Microsoft who posted this fix.

Any idea how I can verify that this "fix" works?

[Blackmirror]

Not as far as i know

What was your original problem please ?

[tuliper]

Quote:

Originally Posted by Blackmirror

What was your original problem please ?

My original problem??? LOL How about hundreds of millions of users having this Vulnerability in Microsoft Video ActiveX control could allow remote code execution" as described here:

http://support.microsoft.com/kb/972890#Fixed

I just want to plug that security hole until Microsoft finds a solution, that's all.

The problem is... there is no way to VERIFY that what Microsoft provided actually works.

[Blackmirror]

As i said
use SpywareBlaster
http://www.javacoolsoftware.com/spywareblaster.html

Quote:

Multi-Angle Protection

Prevent the installation of ActiveX-based spyware and other potentially unwanted programs.
Block spying / tracking via cookies.
Restrict the actions of potentially unwanted or dangerous web sites.

Needs to be manually updated

[TOGG]

Not using Internet Explorer might be a good place to start to reduce (if not completely remove) the risk from this latest exploit.

There are several browsers that don't use Active X. My personal preference is for Opera with a copy of Firefox for collecting Windows Updates (with an addon called IETab) which probably uses some Active X content for a few minutes once a month, but I doubt if it involves any video.

[tuliper]

TOGG and Blackmirror thanks for your tips but none of them answered my question: How do I VERIFY that what Microsoft provided actually works?

Do you know of any web site that plays videos using the infamous "Microsoft Video ActiveX"?

I mean if apply the fix I will no longer be able to play those videos inside Internet Explorer, right?

But all the videos on Microsoft's site play even after I apply the fix. So does it mean that Microsoft doesn't use its own technology?