From: "cmsix" <cmsix@storiesonline.org>


|
| Isn't most every ActiveX control a vulnerability? I realize that some
| of them are useful, and that in a "kinder" and "gentler" world they
| might well be very useful for everyone. Lately though, I've been
| thinging that it isn't all that smart to have something downloaded to
| your computer that gives someone else control of parts of it. On the
| other hand, I don't even have to do it and it ends up being lucrative
| for me. Imagine that, other people are causing trouble all over the
| internet and here I get paid to straighten it out for a few. Maybe
| it's my good looks. Naw, must be because I work so cheap.
|
| cmsix

That's a common misperception. There are malware add-ons to FireFox. That can be compared
to Microsoft's ActiveX. Many legitimate applications use ActiveX. In this case there is a
XML in HTTP handling bug that cvan be exploited to elevate priveledges to install sooftware
without the user's knowledge or consent.

Please read all about the situation in KB927892...
http://www.microsoft.com/technet/sec...ry/927892.mspx

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm