JSI Tip 8217. How do I prevent a malicious Download.Ject attack against Internet Explorer?

When an ADODB.Stream object, a file in memory that provides for reading and writing your hard disk, is hosted in Internet Explorer, a known vulnerability could allow a malicious script to run in the Local Machine zone.

To prevent a Download.Ject attack:

1. Copy / Paste the following into Notepad.exe and save the file as ADODB_Stream.reg:

REGEDIT4

\[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\\{00000566-0000-0010-8000-00AA006D2EA4\}\]
"Compatibility Flags"=dword:00000400

2. Merge the ADODB_Stream.reg file with your registry, or run regedit /s ADODB_Stream.reg.



Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish