Re: Disabling the MSIE hole.

["Bob at firstcodings" <bob () firstcodings com>]

 Hi,

Thanks for this !
To enlarge the patch to all users, you can regedit as follow :

REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Inter
net Settings]
"Security_HKLM_only"=dword:1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet
Settings\Zones\0]
"1004"=dword:3

Simply cut'n paste (lines may wrap) this in a ".reg" file and execute. First
line denies "per user" settings (see
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q182569 for complete
details).


Thanks again.


Bob - firstcodings.

----- Original Message -----
From: "Suresh P" <surya () nsecure net>
To: "Magnus Bodin" <magnus () bodin org>; <vuln-dev () securityfocus com>;
<bugtraq () securityfocus com>; <focus-ms () securityfocus com>
Cc: <ms-secnews () securityfocus com>; <SECURITY-BASICS () securityfocus com>
Sent: Wednesday, March 13, 2002 6:52 AM
Subject: Disabling the MSIE hole.


> Hi All,
>     You can disable the Latest MSIE hole on all windows machines
> by enabling the security settings for the LocalZone.
> unfortunately, there is no UI for doing this. All you have to
> do is, launch regedit, traverse to the following key and
> change the value to 3.
> HKEY_CURRENT_USER
> \Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
> and change the value of "1004" from "0" to "3".
> This is applicable for Windows 95/98/NT/2000
>
> regards,
> Suresh Ponnusami,
> Internet Security Consultant,
> nSecure Software (P) Ltd,
> http://www.nsecure.net/
> Ph: 91 80 535 1545
> Fax: 91 80 535 1551
> --------------------------------------------------------------------------
--
> -
> This message is intended for the addressee only. It may
> contain privileged or confidential information. If you have
> received this message in error, please notify the sender
> and destroy the message immediately. Unauthorised
> use or reproduction of this message is strictly prohibited.