On TechRepublic: Windows 7: Slower to boot than Vista?
BNET Business Network:
BNET
TechRepublic
ZDNet

November 22nd, 2005

How to stop 'Active Scripting' in home PCs

Posted by George Ou @ 4:28 am

Categories: Security

Tags:

A supercritical zero-day IE flaw has been released in to the wild by a reckless British company.  There are no patches available as of 11/22/2005.  Here is what you can do now to protect yourself.  You must disable "Active Scripting" on all Windows computers running Internet Explorer 5.5 or 6.0 even if you have Windows XP SP2 installed.

Open Internet Explorer and hit the "Tools" menu and click "Internet options".  Jump to the "Security" tab, highlight "Internet" and click "Custom Level".

This is what you would normally see if you scrolled down to "Scripting" section.  This is NOT safe!

Change it to the following settings and click "OK"

Although this will protect you from malicious websites, it can break certain web pages.  To avoid this in the future. you just need to make sure they’re listed under your "Trusted sites" group.  To add a trusted site, highlight "Trusted sites" and then click the "Sites" button.

To add a site, just type *.my_favorite_domain.com" and click "Add".

Close everything out and your home PC will protected against this new exploit.

George Ou is Technical Director of ZDNet. See his full profile and disclosure of his industry affiliations.

  • Talkback
  • Most Recent of 139 Talkback(s)
This hurts my Start Page
Now that active scripting is disabled i can no longer see what email in have in Hotmail on my.MSN page. This blows just to many people with way to much free time looking for this stuff. Find the ones using these holes and cut their heads off already.... (Read the rest)
Posted by: dagger_z Posted on: 03/25/06 You are currently: a Guest | | Terms of Use
Message has been deleted.  toxicfreak | 11/22/05
"time to get drunk"  ejhonda | 11/22/05
An how do you explain the poor work of MSCEs ?  michael_t | 11/22/05
Can you substantiate your claim?  balsover | 11/22/05
hmmmm  grindy | 11/23/05
Unrealistic Expectations  palmwarrior | 11/22/05
Care to answer this?  Linux Guy 1000 | 11/22/05
Simple  IT Scion | 11/22/05
Don't Go There  D. T. Schmitz | 11/22/05
You're no fun.  IT Scion | 11/22/05
Level of risk  broper | 11/22/05
It's a lot simpler than that....  Henry Miller | 11/22/05
Moronic post of the day  ShadeTree | 11/22/05
Careful  Chad_z | 11/22/05
When I replied to the previous poster ...  ShadeTree | 11/22/05
Is this an official withdrawal?  Jay Cash | 11/22/05
I don't know!  ShadeTree | 11/22/05
You better decide soon  Jay Cash | 11/22/05
wow, you really shot him down there!  Jeff Spicoli | 11/22/05
He's after the "Miss Congeniality" award  IT_User | 11/22/05
Coming from you, ...  ShadeTree | 11/22/05
Precisely the spirit  IT_User | 11/22/05
seriously  Jeff Spicoli | 11/22/05
LMAO!!!!  glstorck@... | 11/22/05
Long term vs. short term  Henry Miller | 11/22/05
Once again into the breach.  ShadeTree | 11/23/05
I maintain a Windoze machine...  Henry Miller | 11/23/05
one of a kind  info@... | 11/23/05
Windows admin ?  pkrdk | 11/23/05
So how is it with all your wealth ...  ShadeTree | 11/23/05
Because I haven't chosen to get that deeply into yesterday's OS?  Henry Miller | 11/23/05
Automatic updates woes  pkrdk | 11/23/05
Maintenance  pkrdk | 11/26/05
I agree that  michael_t | 11/22/05
Yes, yours is.  Immanuel Tranz-Mischen | 11/25/05
The true sign of lack of ...  ShadeTree | 11/28/05
Switching to Linux  jack@... | 12/05/05
Canned...  bumberfsck | 11/22/05
Hungh?  Jeff Spicoli | 11/22/05
The problem here  Roger Ramjet | 11/22/05
He specifically said Enterprise  Real World | 11/22/05
Really! He did!  Real World | 11/22/05
Why?  rapson | 11/22/05
Value Proposition  Roger Ramjet | 11/22/05
nope, missed again Carly!  Jeff Spicoli | 11/22/05
To Remember ...or What?!  mustang_z | 12/29/05
To Remember ...or, "What?!"  mustang_z | 12/29/05
The BEST way:  CobraA1 | 11/22/05
That's a great way to break websites  zmud | 11/22/05
The whole idea is to never use IE except for updating windows  CobraA1 | 11/22/05
Windiz update  Ipsenol | 12/03/05
I almost do all that, except ...  George Jay | 11/22/05
I didn't say to block cookies in Firefox, just IE  CobraA1 | 11/22/05
Thanks for the heads-up, I missed that one (sigh).  JonathonDoe | 11/22/05
How about Firefox / Oversight?  D. T. Schmitz | 11/22/05
Firefox follow up / download url is here  D. T. Schmitz | 11/22/05
Why is it...  ShadeTree | 11/22/05
Maybe Because Microsoft SUCKS??  itanalyst | 11/22/05
If you want to educate ...  ShadeTree | 11/22/05
Wrong too  gregry | 11/22/05
Good catch on the spelling error.  ShadeTree | 11/22/05
Kick the ball, not the player......  pkrdk | 11/23/05
You think you get more allies that way?  george_ou | 11/22/05
I don't think that's his intent  Jeff Spicoli | 11/22/05
His intent isn't anything close to that  balsover | 11/22/05
You forgot a few other links...  balsover | 11/22/05
RE: You forgot a few other links...  Redsheep | 12/29/05
Make Firefox the NEW target!! YES!!  mustang_z | 12/29/05
It might just be  IT_User | 11/22/05
For those of you who ...  ShadeTree | 11/22/05
My point is  IT_User | 11/22/05
If you had read the initial article reporting ..  ShadeTree | 11/22/05
That was really helpful!  Jay Cash | 11/22/05
RE: Jay  ShadeTree | 11/22/05
Oh yeah, and the article was enlightening as well  IT_User | 11/22/05
So let me summarize  ShadeTree | 11/22/05
Alternatives / Readership may not be aware  D. T. Schmitz | 11/22/05
Can you say "disingenuous"?  ShadeTree | 11/22/05
You can say it  IT_User | 11/22/05
Not only can I say it ...  ShadeTree | 11/22/05
And there it is  D. T. Schmitz | 11/22/05
Not the time and place for this  george_ou | 11/22/05
Get some rest  D. T. Schmitz | 11/22/05
Yes, with Firefox and Opera  george_ou | 11/22/05
George, you sleep with software?  IT_User | 11/22/05
Sarcasm for a minute...  ju1ce | 11/22/05
Except the solution you propose is ...  ShadeTree | 11/22/05
Come on. Do you actually believe that?  Immanuel Tranz-Mischen | 11/25/05
Here's why  sokushi jonez | 11/23/05
Do I  D. T. Schmitz | 11/23/05
Still need IE  mojo303 | 11/28/05
Still need IE - I concur!  mustang_z | 12/29/05
How about Firefox / Oversight? (Take 2)  D. T. Schmitz | 11/22/05
Other options.  IT Scion | 11/22/05
Why? Because it's there happy  D. T. Schmitz | 11/22/05
True  IT Scion | 11/22/05
Agreed  D. T. Schmitz | 11/22/05
You could have just as easily mentioned Opera.  B.O.F.H. | 11/22/05
Thanks  D. T. Schmitz | 11/22/05
How about Avant?  IT Scion | 11/22/05
Very nice george  tombalablomba | 11/22/05
Thanks  george_ou | 11/22/05
Anyone read this on Bugtraq?  Scrat | 11/22/05
It brought Safari to a halt also.  Zoraster | 11/22/05
Thanks................  Tennisyoda@... | 11/22/05
Glad I can help  george_ou | 11/22/05
Material  D. T. Schmitz | 11/22/05
Material easy to come by in IT  george_ou | 11/22/05
Thanks, George.  John L. Ries | 11/22/05
A conflict with windows update  jp_z | 11/22/05
An update  jp_z | 11/22/05
Message from CobraA1  CrisBurgess | 12/09/05
Reckless?  George Jay | 11/22/05
It wasn't a "super critical" bug then  george_ou | 11/22/05
So, if this is a JavaScript-based exploit...  dsentman@... | 11/22/05
Distinctions  D. T. Schmitz | 11/22/05
It did, many thanks...  dsentman@... | 11/22/05
Implementation  D. T. Schmitz | 11/22/05
Why not completely disable the network for each windows WS?  No_Brain_To_Think | 11/22/05
So just where is IE 7.0?  WiredGuy | 11/22/05
That wouldn't solve this problem.  Immanuel Tranz-Mischen | 11/25/05
Tried to stop "Active Scripting"  Kirkwolf | 11/22/05
E-mail and Active Scripting  Vladimir Druzhshchienschkyy | 11/22/05
Another Worthless Security Alert  ktw0120@... | 11/23/05
If you don't hear about it, does that mean it doesn't exist?  george_ou | 11/23/05
How to stop 'Active Scripting' in home PCs  TokyoPete | 11/23/05
Nice try George, but...  Betelgeuse58 | 11/23/05
RE:  iwish40 | 11/30/05
Fix Breaks Windows Update!  lodaver | 11/23/05
Just a guess  Immanuel Tranz-Mischen | 11/25/05
Is the cure worse than the problem?  FRXL | 11/23/05
Yes, it's a nasty fix but all we have  george_ou | 11/23/05
bad fix  Spin State | 11/23/05
That's why you add them to your trusted site  george_ou | 11/23/05
Awhh, C'mon George!  nerdnick | 11/26/05
Prompt can be a better solution.  Anton Philidor | 11/25/05
Thank you, George  Kathy Arnold | 11/30/05
Active Scripting Problems  jedinc@... | 12/05/05
This hurts my Start Page  dagger_z | 03/25/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Click Here
advertisement

Recent Entries

Top Rated

    advertisement

    Archives

    ZDNet Blogs

    White Papers, Webcasts, and Downloads

    Meet Doc

    • Here to help you with your Document Management Needs
    • Doc is an enigma. Born to a Russian ballerina and a German electrical engineer, he grew up in various locations in the United States. He’s seen the insides of more brands, versions, and generations of printer and printer-related hardware than almost anyone.
    • To learn more about this mysterious figure check out his blog on ZDNet and his Workspace on TechRepublic. You’ll be glad you did.
    • Produced by
      ZDNet and