As many of you are aware, Microsoft announced earlier this week there were two flaws in the video ActiveX controls in Internet Explorer. They have been working around the clock to develop a patch for it and anticipate having one available 7/15, but there is nothing definite at this time. As a result, Anchor has worked in conjunction with our NOC team and monitoring tool vendor to develop a script that we can run to work around the vulnerability. When the patch is released, we can then rerun the script disabling the changes and apply the patch.
Like anything else, the script has been tested but isn't 100% guaranteed to work, however we'd like to be proactive here rather than reactive-even if it is just a short wait for the patch to be released. For clients who have desktops under contract with us, we will take care of this automatically for you via the agent that is installed on each pc. You shouldn't experience any issues in Internet Explorer but if you do please give us a call.
For all other clients, you can either wait for the patch next week, or visit this link to run the fix, and then run the other tool to remove it once the patch is released. The link is: http://support.microsoft.com/kb/972890
Please note we will only be running this on workstations, as it affects Internet Explorer and we do no web browsing from the server.
In all honesty I'm not overly concerned with this vulnerability and think we'd probably be fine waiting until a Microsoft approved patch is released next week-in fact we debated this as a team. Since we have the ability to do something about it now, we decided as a team to take action rather than risk the chance of being burned.
Have a great weekend,
Vince
An informational blog for the clients and associates of Anchor Network Solutions, Inc.
