The ongoing exploitation of the vulnerability in an ActiveX control used by Internet Explorer has created a dangerous situation, as there is no patch yet for the MSVidCtl.dll vulnerability. However, there are several steps you can take to protect yourself against attacks.

Microsoft has released a FixIt tool for the video control vulnerability, which disable the affected ActiveX control. This is the best option for users running either Windows XP or Windows Server 2003, both of which are affected by the flaw. Users also can follow Microsoft’s instructions for manually disabling the control by editing the registry. This option is much more involved and should only be used by advanced users.

Users running Windows Vista or Windows Server 2008 are not vulnerable to this flaw.

Categories: Vulnerabilities