In two advisory bulletins posted on its official website, Microsoft confirmed yesterday (November 2) that a security patch for Internet Explorer has caused the browser to malfunction, disrupting the functionality of websites utilizing customized applications.
This issue arose after the installation of two security patches, MS05-038 and MS05-052, in August and October, respectively. Microsoft stated that both patches interfere with ActiveX controls, which are small applications designed to execute basic tasks that contribute to website interactivity. Notably, patch MS05-038 may also cause errors in Java applications.
After installing these patches, some applications specifically programmed by developers may not function on Internet Explorer.
However, Stephen Toulouse, a program management director at Microsoft’s Security Response Center, mentioned that any issues caused by patches MS05-038 and MS05-052 would only affect a very limited number of users. Essentially, these patches are intended to enhance the browser’s security.
The issue of websites being unable to display is the latest problem arising from Microsoft’s security patches. Recently, another patch was identified that could potentially disrupt users’ computer systems if certain default settings in the operating system had been altered. Moreover, users of Windows 2000 may not find suitable patches for security issues within that operating system.
The problematic patch MS05-052 introduces errors because it implements changes to the Windows operating system to enhance security for the Internet Explorer browser. After installing this patch, Internet Explorer will conduct a special security check before allowing the execution of ActiveX controls. If the ActiveX controls do not have the necessary permissions configured, Internet Explorer will immediately block these types of websites.
To resolve this issue, Microsoft recommends developers reprogram their ActiveX control applications and ensure they are marked as safe for Internet Explorer. Alternatively, users might consider lowering the security settings of Internet Explorer, though this is not advisable.
The security enhancements in the MS05-038 patch also disrupt ActiveX controls and Java applications. To address this issue, these applications will require reprogramming or adjustments.
HVD – (CNet)
