Re: Disabling the MSIE hole.

From: Bob at firstcodings (bob@firstcodings.com)
Date: 03/13/02 

From: "Bob at firstcodings" <bob@firstcodings.com>
To: "Suresh P" <surya@nsecure.net>, "Magnus Bodin" <magnus@bodin.org>, <vuln-dev@securityfocus.com>, <bugtraq@securityfocus.com>, <focus-ms@securityfocus.com>
Date: Wed, 13 Mar 2002 10:53:53 +0100

 Hi,

Thanks for this !
To enlarge the patch to all users, you can regedit as follow :

REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Inter
net Settings]
"Security_HKLM_only"=dword:1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet
Settings\Zones\0]
"1004"=dword:3

Simply cut'n paste (lines may wrap) this in a ".reg" file and execute. First
line denies "per user" settings (see
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q182569 for complete
details).

Thanks again.

Bob - firstcodings.

----- Original Message -----
From: "Suresh P" <surya@nsecure.net>
To: "Magnus Bodin" <magnus@bodin.org>; <vuln-dev@securityfocus.com>;
<bugtraq@securityfocus.com>; <focus-ms@securityfocus.com>
Cc: <ms-secnews@securityfocus.com>; <SECURITY-BASICS@securityfocus.com>
Sent: Wednesday, March 13, 2002 6:52 AM
Subject: Disabling the MSIE hole.

> Hi All,
> You can disable the Latest MSIE hole on all windows machines
> by enabling the security settings for the LocalZone.
> unfortunately, there is no UI for doing this. All you have to
> do is, launch regedit, traverse to the following key and
> change the value to 3.
> HKEY_CURRENT_USER
> \Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
> and change the value of "1004" from "0" to "3".
> This is applicable for Windows 95/98/NT/2000
>
> regards,
> Suresh Ponnusami,
> Internet Security Consultant,
> nSecure Software (P) Ltd,
> http://www.nsecure.net/
> Ph: 91 80 535 1545
> Fax: 91 80 535 1551
> -------------------------------------------------------------------------- 

--
> -
> This message is intended for the addressee only. It may
> contain privileged or confidential information. If you have
> received this message in error, please notify the sender
> and destroy the message immediately. Unauthorised
> use or reproduction of this message is strictly prohibited.
>

Relevant Pages

  • Re: images blocked
    ... REGEDIT displays data and how it exports the data. ... You may have hit it with this Registry Settings web site. ... So you suggested the Tool> Options & uncheck the HTML content ...
    (microsoft.public.windows.inetexplorer.ie6_outlookexpress)
  • Re: tools->Internet Options-> Advanced
    ... whole Registry from Regedit to a text file on the machine that has the ... In microsoft.public.windows.inetexplorer.ie6.setup, "Mel Smith" ... >and it is 'checked' and allows me to see folders on FTP sites. ... >> settings on the second machine match the settings on the first machine. ...
    (microsoft.public.windows.inetexplorer.ie6.setup)
  • Re: Content Advisor Bug
    ... I ran the program to re-initialize the settings. ... I found a way dissect and reset the Content List using Regedit. ... > MS-MVP, Windows Shell ... >> Content Advisor blocks all web browsing. ...
    (microsoft.public.windowsxp.help_and_support)
  • adding to the first part
    ... but when I used Regedit I see ... the following settings: ... even editied the registry bys ... a web browser that I am not too ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: page errors
    ... i've alway had my settings for internet and intranet set at ... Try temporarily disabling your firewall to see if HTTPS then works ... You may have other software installed that is blocking ActiveX content. ... > Disable the McAfee ActiveX controls Applet filters in the Internet Filter ...
    (microsoft.public.windows.inetexplorer.ie6.browser)