Microsoft issues ActiveX flaw workaround

But no fix as yet


8 July 2008 14:40 GMT / By Katie Scott

Microsoft has released a bug workaround to temporarily fix a flaw in ActiveX.

The fix is to counter a vulnerability in the Snapshot Viewer ActiveX control for Microsoft Access, which the computer giant admitted hackers have been trying to target.

The flaw affects the Snapshot Viewer in Microsoft Office Access 2000, 2002 and 2003.

Microsoft says that attacks have included tricking users into visiting sites containing rogue ActiveX controls designed to exploit the vulnerability.

If this approach works, it seems that the hacker can get the same rights as logged-on users to compromised machines.

Microsoft is still trying to fix the problem but in the meantime, has suggested a range of measures users can take to protect their machines.

Some of these involve preventing COM objects from running in Internet Explorer, or disabling scripting.

The Register adds: "The first of these means using the Registry Editor, where mistakes can really screw up your system, while the second might leave users unable to use many websites normally".

The website also recommends Windows users might want to use Firefox or Opera until a proper fix is issued by Microsoft.
Related
Full tags
Software, Microsoft, ActiveX

share print story pdf email story

Recommended articles

Recommended articles from around the web
Loading

Best iPad 2 apps

We detail the best iPad 2 and iPad apps in the app store Which iPad app should you download?

Best new iPad apps

We detail the best iPad apps in the app store for your new Retina Display Which iPad app should you download?

Windows 8

First Look: Windows 8 Consumer Preview reviewed

The new iPad

The new iPad: Everything you need to know

Pocket-lint poll

Q. Does the Samsung Galaxy S III deliver what you hoped for?

Vote YES Vote NO

» LAST TIME
When asked Would you switch from iOS to Android? 54% said yes and 46% said no