Microsoft KB Archive/240308

= Update Available for Scriptlet.Typelib and Eyedog Security Vulnerability and the BubbleBoy Virus =

Article ID: 240308

Article Last Modified on 3/22/2007

-

APPLIES TO


 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 4.01 Service Pack 1
 * Microsoft Internet Explorer 4.01 Service Pack 2
 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 4.01 Service Pack 2
 * Microsoft Internet Explorer 5.0

-



This article was previously published under Q240308



SUMMARY
Microsoft has released an update that eliminates security vulnerabilities in the following two ActiveX controls:
 * Object for constructing type libraries for scriptlets (Scriptlet.Typelib)
 * Eyedog

For more information about these controls, view the following Microsoft Web site:

http://www.microsoft.com/technet/security/bulletin/ms99-032.mspx



MORE INFORMATION
The update eliminates a vulnerability that may allow a malicious Web site operator to take inappropriate actions on your computer. The update is available on both of the following Microsoft Web sites:

ftp://ftp.microsoft.com/peropsys/IE/IE-Public/Fixes/usa/Eyedog-fix

-and-

http://windowsupdate.microsoft.com

The Scriptlet.Typelib and Eyedog controls are not related to each other, but both are incorrectly marked as "safe for scripting" and can therefore be called from Internet Explorer.

Developers use the Scriptlet.Typelib control to generate Type Libraries for Windows Scripting Components. The Scriptlet.Typelib control should not be marked "safe for scripting" because it allows local files to be created or modified. The update removes the "safe for scripting" setting, which causes Internet Explorer to prompt you for confirmation before loading the control.

The Eyedog control is used by diagnostic software in Windows. The Eyedog control should not be marked "safe for scripting" because it allows registry information to be queried and computer characteristics to be gathered. In addition, one of the control's methods is vulnerable to a buffer overrun attack. The update prevents the control from loading within Internet Explorer.

The BubbleBoy virus, an Internet worm virus, is a virus that requires Internet Explorer 5 and Microsoft Outlook 2000 or Microsoft Outlook 98 or Microsoft Outlook Express. This virus can be embedded in e-mail messages that are in Hypertext Markup Language (HTML) format and that do not contain any attachments. The update that is described in this article eliminates the security vulnerabilities in the two ActiveX controls; this update prevents the BubbleBoy virus from spreading.

For additional security-related information about Microsoft products, view the following Microsoft Web site:

http://www.microsoft.com/security

NOTE: This update is included with Internet Explorer 5.01 and later.

Additional query words: ie bubbleboy update hta vandelay industries kakworm kak vbs wscript worm kagou anti krosoft

Keywords: kbvirus kbprb KB240308

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.