DSO EXPLOIT?? (spybot)

[John Lennard]

Searhing for spyware led me to the best software, Spybot
Search and Destroy. I currently have WIndows XP Pro, in
addition, whenever i search for spyware I recieve one
saying DSO Exploit, stating it is a security hole in
Microsoft. Everytime it seems to repair and delete it,
until i check for spyware again. I also tried, searching,
it found and seemingly deleted it, then searched again,
and again found it! Please advise, I think this "DSO
Exploit" is causing my computer to freeze and lock-up
often.

John Lennard

Princeton University
Ph.D Law and M.D in Medicine
M.A USA

 

[Carey Frisch [MVP]]

Basically what's happening is that Spybot is finding that the security setting
for "Download unsigned ActiveX controls" for the (normally) hidden
"My Computer" zone in Internet Explorer is not set to disabled.

Visit http://forums.net-integration.net/index.php?showtopic=15308
for additional info.

--
Carey Frisch
Microsoft MVP
Windows XP - Shell/User

Be Smart! Protect your PC!
http://www.microsoft.com/security/protect/

----------------------------------------------------------------------------


| Searhing for spyware led me to the best software, Spybot
| Search and Destroy. I currently have WIndows XP Pro, in
| addition, whenever i search for spyware I recieve one
| saying DSO Exploit, stating it is a security hole in
| Microsoft. Everytime it seems to repair and delete it,
| until i check for spyware again. I also tried, searching,
| it found and seemingly deleted it, then searched again,
| and again found it! Please advise, I think this "DSO
| Exploit" is causing my computer to freeze and lock-up
| often.
|
| John Lennard
|
| Princeton University
| Ph.D Law and M.D in Medicine
| M.A USA

 

[Guest]

If you have downloaded and installed all Windows "Critical" Updates you
don't have to worry about DSO Exploit. Your computer is patched. You can
configure Spybot to ignore the DSO Exploits or simply ignore them.

 

[Bruce Chambers]

Greetings --

The DSO exploit was patched long ago by IE Cumulative Update
MS02-015, in March of 2002. If you've installed this specific patch,
or any subsequent IE Cumulative Updates, or Service Pack 1, you're
safe. It would appear that the latest version of Spybot S&D is only
checking for Internet zone settings in the registry that could be used
as work-around protection, and not for the presence of any corrective
patches. Hopefully, the makers of Spybot will soon fix this bug.

MS02-015 March 28, 2002 Cumulative Patch for Internet Explorer
http://support.microsoft.com/default.aspx?scid=kb;EN-US;319182

If you like, you can test your system for this particular
vulnerability at this web site:
http://www.greymagic.com/security/advisories/gm001-ie/

The makers of SpyBot S&D have acknowledged the problem and will
fix it on their next update:
http://www.safer-networking.org/index.php?page=paragraphs&detail=currentfaqs


Bruce Chambers
--
Help us help you:



You can have peace. Or you can have freedom. Don't ever count on
having both at once. - RAH