Hi, Thanks for this ! To enlarge the patch to all users, you can regedit as follow : REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Inter net Settings] "Security_HKLM_only"=dword:1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0] "1004"=dword:3 Simply cut'n paste (lines may wrap) this in a ".reg" file and execute. First line denies "per user" settings (see http://support.microsoft.com/default.aspx?scid=kb;EN-US;q182569 for complete details). Thanks again. Bob - firstcodings. ----- Original Message ----- From: "Suresh P" <suryaat_private> To: "Magnus Bodin" <magnusat_private>; <vuln-devat_private>; <bugtraqat_private>; <focus-msat_private> Cc: <ms-secnewsat_private>; <SECURITY-BASICSat_private> Sent: Wednesday, March 13, 2002 6:52 AM Subject: Disabling the MSIE hole. > Hi All, > You can disable the Latest MSIE hole on all windows machines > by enabling the security settings for the LocalZone. > unfortunately, there is no UI for doing this. All you have to > do is, launch regedit, traverse to the following key and > change the value to 3. > HKEY_CURRENT_USER > \Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0 > and change the value of "1004" from "0" to "3". > This is applicable for Windows 95/98/NT/2000 > > regards, > Suresh Ponnusami, > Internet Security Consultant, > nSecure Software (P) Ltd, > http://www.nsecure.net/ > Ph: 91 80 535 1545 > Fax: 91 80 535 1551 > -------------------------------------------------------------------------- -- > - > This message is intended for the addressee only. It may > contain privileged or confidential information. If you have > received this message in error, please notify the sender > and destroy the message immediately. Unauthorised > use or reproduction of this message is strictly prohibited. >
This archive was generated by hypermail 2b30 : Wed Mar 13 2002 - 09:54:01 PST