Microsoft Issues Security Workarounds for Access Ahead of Patch Tuesday
<a href="http://www.theregister.co.uk/2008/07/08/ms_snapshot_bug_workaround">The Register</a>, <a href="http://redmondmag.com/news/rss.asp?editorialsid=10029#3">Redmond</a>
On the eve of what most are considering to be a low-key Patch Tuesday, Microsoft separately issued a workaround for an ActiveX vulnerability within its Access database program.Specifically, the flaw affects the Snapshot Viewer in Microsoft Office Access 2000, 2002 and 2003, enabling attackers to gain full rights to compromised machines. The Snapshot Viewer stores screen shots of data reports into usable files and can be viewed without running Access.
While it figures out a true fix, Microsoft offered three workarounds to ward off attacks: prevent COM objects from running in Internet Explorer; change settings to prompt before running Active Scripting or to disable Active Scripting in the Internet and local intranet security zone; and set Internet and local intranet security zone settings to ?High? to prompt before running ActiveX Controls and Active Scripting.
Otherwise, today's patches are expected to comprise four important fixes involving Windows Vista, XP/2000/20003, SQL Server and Exchange Server.The Register, Redmond
Read more about:
2008About the Author(s)
You May Also Like
Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024Finding Your Way on the Path to Zero Trust
May 22, 2024Extending Access Management: Securing Access for all Identities, Devices, and Applications
June 4, 2024Assessing Software Supply Chain Risk
June 6, 2024Preventing Attackers From Wandering Through Your Enterprise Infrastructure
June 19, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024