Robin T Cox <robin2803@hotmail.com> wrote in
news:Xns940AA464D2719robin2803@194.168.222.40:

>> Title: Cumulative Patch for Internet Explorer Execution (828750)
>> Date: October 3, 2003
>>
> I installed this patch today. But even so, with Activex enabled my IE6
> still fails the Secunia test:
> http://www.secunia.com/MS03-032/

To specify more exactly:

My Activex settings are Prompt/Disable/Disable/Enable/Enable.
When I click the link to perform the test, the grey File Download box pops
up.
When I click Open, Kerio PF kicks in with:
- an Outgoing Connection Alert: C:\windows\mshta.exe ('Microsoft (R) HTML
Application host' from your computer wants to connect to
localhost[127.0.0.1],port 8080)
When I click Deny, Kerio issues:
- another Outgoing Connection Alert, again from mshta.exe, wanting to
connect to 213.150.41.226.port 80
When I click Deny, Kerio issues:
- another Outgoing Connection Alert, from mshta.exe wanting to send UDP
datagram to localhost [127.0.0.1], port 1116
When I click Deny, nothing further happens.

My puzzlement is because, having installed the patch,
- when I did the test I did not expect to get the pop-up File Download box
in the first place
- it seems that, but for Kerio's protection, my system would still be
making unwanted outgoing connections etc.

Or am I getting hold of the wrong end of the stick?