Microsoft Security Advisory (953839)
Update Rollup for ActiveX Kill Bits
Published: | Updated:
Microsoft is releasing a new set of ActiveX kill bits with this advisory.
The update includes kill bits for the following third-party software:
- Aurigma Image Uploader. Aurigma has issued an advisory and an update that addresses vulnerabilities. Please see the advisory from Aurigma for more information. These kill bits are being set at the request of the owner of the ActiveX control. Customers who require support should contact Aurigma. The class identifiers (CLSIDs) for this ActiveX control are as listed in the Frequently Asked Questions section of this advisory.
- HP Instant Support. HP has issued 2 advisories, (c01422264) and (c01439758), and an update that addresses these vulnerabilities. Please see the advisories from HP for more information and download locations. These kill bits are being set at the request of the owner of the ActiveX control. Customers who require support should contact HP. The class identifiers (CLSIDs) for this ActiveX control are as listed in the Frequently Asked Questions section of this advisory.
For more information about installing this update, see Microsoft Knowledge Base Article 953839.
- You can provide feedback by completing the form by visiting Microsoft Help and Support: Contact Us.
- Customers in the United States and Canada can receive technical support from Microsoft Product Support Services. For more information about available support options, see Microsoft Help and Support.
- International customers can receive support from their local Microsoft subsidiaries. For more information about how to contact Microsoft for international support issues, visit International Support.
- Microsoft TechNet Security provides additional information about security in Microsoft products.
The information provided in this advisory is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
- V1.0 (August 12, 2008): Advisory published.
- V1.1 (August 13, 2008): Updated to include links to HP’s Advisories.
- V1.2 (November 25, 2008): Added an entry to Frequently Asked Questions to communicate that users with Windows Server 2008 Server Core installation will still be offered but do not need to install this update.
- V1.3 (March 11, 2009): Added an entry to Frequently Asked Questions to communicate that for the purpose of automatic updating, this update does not replace the Cumulative Security Update of ActiveX Kill Bits (950760) that is described in Microsoft Security Bulletin MS08-032.