MS 2562937: Update Rollup for ActiveX Kill Bits (2562937)

Medium Nessus Plugin ID 55802


The remote Windows host is missing an update that disables selected ActiveX controls.


The remote Windows host is missing a list of kill bits for ActiveX controls that are known to contain vulnerabilities.

If these ActiveX controls are ever installed on the remote host, either now or in the future, they would expose it to various security issues.

Note that the affected controls are from third-party vendors that have asked Microsoft to prevent their controls from being run in Internet Explorer.


Microsoft has released a set of patches for Windows XP, 2003, Vista, 2008, 7, and 2008 R2.

See Also

Plugin Details

Severity: Medium

ID: 55802

File Name: smb_kb_2562937.nasl

Version: $Revision: 1.14 $

Type: local

Agent: windows

Family: Windows

Published: 2011/08/10

Modified: 2017/08/30

Dependencies: 13855

Risk Information

Risk Factor: Medium


Base Score: 5.1

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:TF/RC:ND

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/Registry/Enumerated, SMB/WindowsVersion

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2011/08/09

Vulnerability Publication Date: 2011/03/31

Reference Information

CVE: CVE-2011-0331, CVE-2011-1207, CVE-2011-1827

BID: 46930, 47643, 47695

OSVDB: 71249, 72136, 74807

ICS-ALERT: 11-103-01A

MSKB: 2562937