How to disable the ADODB.Stream object from Internet Explorer

[RJK]

Microsoft Knowledge Base Article - 870669
http://support.microsoft.com/?id=870669
"An ADO stream object represents a file in memory. The stream object
contains several methods for reading and writing binary files and text
files. When this by-design functionality is combined with known security
vulnerabilities in Microsoft Internet Explorer, an Internet Web site could
execute script from the Local Machine zone. This behavior occurs because the
ADODB.Stream object permits access to the hard disk when the ADODB.Stream
object is hosted in Internet Explorer."

Well, I just did it manually, because it seemed a good idea but, can anyone
put into simple English how this affects real life, 'occasional' surfing,
always to reputable sites, regarding functionality. e.g. java scripting /
shopping online etc. ?

regards, Richard

 

[Buffalo]

I can't, but it only adds a Registry entry which can be easily removed
either by editing the Registry or using Add-Remove.

 

[PCR]

http://support.microsoft.com/?kbid=870669
"How to disable the ADODB.Stream object from Internet Explorer"

It says you will see "ActiveX component can’t create object:
‘ADODB.Stream’", if a site tries to do what it intends to prevent.
Therefore, go to all your regular places. What happened?

KB870669.inf appears to be a tad busier than just creating that one
Registry key. Therefore, take the update. It gets into Add/Remove
Programs, anyhow.


--
Thanks or Good Luck,
There may be humor in this post, and,
Naturally, you will not sue,
should things get worse after this,
PCR
(e-mail address removed)
| Microsoft Knowledge Base Article - 870669
| http://support.microsoft.com/?id=870669
| "An ADO stream object represents a file in memory. The stream object
| contains several methods for reading and writing binary files and text
| files. When this by-design functionality is combined with known
security
| vulnerabilities in Microsoft Internet Explorer, an Internet Web site
could
| execute script from the Local Machine zone. This behavior occurs
because the
| ADODB.Stream object permits access to the hard disk when the
ADODB.Stream
| object is hosted in Internet Explorer."
|
| Well, I just did it manually, because it seemed a good idea but, can
anyone
| put into simple English how this affects real life, 'occasional'
surfing,
| always to reputable sites, regarding functionality. e.g. java
scripting /
| shopping online etc. ?
|
| regards, Richard
|
|
|

 

[Richard G. Harper]

The odds that you'll see this legitimately happen on a public Internet site
are extremely remote. The function is more often used on Intranet sites,
for example, when you click a link that sends a form to your PC to complete
(usually in Word or a similar program) and then return when completed. Any
legitimate Internet site will simply use the file download function to send
the form to you.

 

[RJK]

Thanx all.

regards, Richard

 

[PCR]

You are welcome.

--
Thanks or Good Luck,
There may be humor in this post, and,
Naturally, you will not sue,
should things get worse after this,
PCR
(e-mail address removed)
| Thanx all.
|
| regards, Richard
|
|
| | > Microsoft Knowledge Base Article - 870669
| > http://support.microsoft.com/?id=870669
| > "An ADO stream object represents a file in memory. The stream object
| > contains several methods for reading and writing binary files and
text
| > files. When this by-design functionality is combined with known
security
| > vulnerabilities in Microsoft Internet Explorer, an Internet Web site
could
| > execute script from the Local Machine zone. This behavior occurs
because
| the
| > ADODB.Stream object permits access to the hard disk when the
ADODB.Stream
| > object is hosted in Internet Explorer."
| >
| > Well, I just did it manually, because it seemed a good idea but, can
| anyone
| > put into simple English how this affects real life, 'occasional'
surfing,
| > always to reputable sites, regarding functionality. e.g. java
scripting /
| > shopping online etc. ?
| >
| > regards, Richard
| >
| >
| >
|
|