(imported topic written by CSL2012)
Will a fixlet be provided for Microsoft Security Advisory 2695962? This patch was released (5/8/2012). An update (KB2695962) Update Rollup for ActiveX Kill Bits
Affected Software:
IE 6, 7, 8, & 9 (Multiple OS Platforms)
Summary:
Microsoft is releasing a new set of ActiveX kill bits with this advisory. This update sets the kill bits for the following third-party software:
•Cisco Clientless VPN solution. The following Class Identifier relates to a request by Cisco to set a kill bit for an ActiveX control that is vulnerable. For more information regarding security issues in the Cisco Clientless VPN solution ActiveX control, please see the Cisco Security Advisory, Cisco ASA 5500 Series Adaptive Security Appliance Clientless VPN ActiveX Control Remote Code Execution Vulnerability. The class identifier (CLSID) for this ActiveX control is as listed in the Third-Party Kill Bits section of this advisory.
More Information: http://technet.microsoft.com/en-us/security/advisory/2695962 & http://support.microsoft.com/kb/2695962
Thanks,
Chi