KB2695962 (Update Rollup for ActiveX)

(imported topic written by CSL2012)

Will a fixlet be provided for Microsoft Security Advisory 2695962? This patch was released (5/8/2012). An update (KB2695962) Update Rollup for ActiveX Kill Bits

Affected Software:

IE 6, 7, 8, & 9 (Multiple OS Platforms)


Microsoft is releasing a new set of ActiveX kill bits with this advisory. This update sets the kill bits for the following third-party software:

•Cisco Clientless VPN solution. The following Class Identifier relates to a request by Cisco to set a kill bit for an ActiveX control that is vulnerable. For more information regarding security issues in the Cisco Clientless VPN solution ActiveX control, please see the Cisco Security Advisory, Cisco ASA 5500 Series Adaptive Security Appliance Clientless VPN ActiveX Control Remote Code Execution Vulnerability. The class identifier (CLSID) for this ActiveX control is as listed in the Third-Party Kill Bits section of this advisory.

More Information: http://technet.microsoft.com/en-us/security/advisory/2695962 & http://support.microsoft.com/kb/2695962



(imported comment written by TerryWeiChao)

Hi Chi,

Currently we are working on Patch Tuesday stuff. We will look into it after Patch Tuesday work.


(imported comment written by SystemAdmin)

Is there an ETA on this bulletin?

(imported comment written by TerryWeiChao)

The content was published. Please have a check.


(imported comment written by CSL2012)

Thanks. We’re Testing it out. Appreciate the turn-around time.

Chi S. Li