Apr 09 2008
Microsoft issues the ActiveX Kill Bit
Unlike most other boring Patch Tuesdays, Microsoft released a rather interesting eye-catching “patch” yesterday called “Security Update of ActiveX Kill Bits (KB948881)“. The security update is actually a registry hack that disables the critically flawed Yahoo! Music Jukebox ActiveX control that if exploited, the remote attacker could gain control over your computer.
Despite Yahoo! prompt action in fixing the flaw and releasing an updated version of the ActiveX control, probably Yahoo! knew it very well that 90% of users out there are just ignorant and never bothered to patch.
In December 2005, Microsoft slaughtered Sony BMG’s controversial root kit using a kill bit.