Potential problems with ActiveX fix for Internet Explorer

Enterprises need to tread very carefully as they begin deploying Microsoft’s latest security patches as the bug fixes include non-security update code which changes the way in which Internet Explorer interacts with ActiveX, Gartner warned yesterday.

According to an advisory written by Gartner analysts Amrit Williams and Michael Silver the update will require some planning before implementation.

The warning comes after Microsoft’s recent release of patches that address 10 security issues, including the highly publicised ‘createTextRange’ vulnerability that is being actively exploited.

However, this latest update, MS06-013, also changes the way in which Internet Explorer interacts with ActiveX code. The change was made to address patent litigation with Eolas Technologies.

Full article: vnunet.com