Home > How To, Malware, MHTML, Security, Vulnerability > Microsoft KB2501696 MHTML Vulnerability Test and Quick Fix Workaround – Group Policy Friendly

Microsoft KB2501696 MHTML Vulnerability Test and Quick Fix Workaround – Group Policy Friendly

January 31st, 2011 Leave a comment Go to comments

All Microsoft platforms since Windows XP SP3 are affected with this pretty nasty vulnerability. Referencing KB2501696 shows that this bug is caused by the way Windows handles MHTML documents. Internet Explorer is not the one at fault here, this is a Windows bug, however IE will be the attack vector for anyone wanting to take advantage of this flaw (and they will).

First off, to see if you are affected, follow this test link using Internet Explorer. If you get a popup box saying you are affected, then you should apply this fix right away. Also, make sure you are using Internet Explorer since most other browsers do not use the Windows MHTML libraries.

Microsoft gives a lame “FixIt” MSI that is not very GPO friendly. So I went out and wrote my own fix for it. It’s a batch script that you can run locally on a single computer or deploy as a “startup/shutdown script” in Group Policy without any edits needed. It is also compatible with x86 and x64 bit machines. Copy the following into your favorite text editor and give it a “.cmd” extension.

You can also click here to download it. Comment below and let me know how this works for you or if you have any other questions/comments/improvements!


Categories: How To, Malware, MHTML, Security, Vulnerability Tags:
  1. anthonymeluso@comcast.net
    February 3rd, 2011 at 12:45 | #1

    I don’t know why no has thanked you yet, but thank you for this post.

  2. February 3rd, 2011 at 12:47 | #2

    No problem! And thank you for the thanks! I appreciate it! 🙂

  3. RyanT
    March 21st, 2011 at 12:56 | #3

    Thanks! Worked great here and very much appreciated, .reg files aren’t fun to push via Group Policy

  4. September 13th, 2014 at 12:00 | #4

    Your style is very unique compared to other folks I have read stuff from.
    Many thanks for posting when you’ve got the opportunity, Guess I will just bookmark this web site.

  5. March 25th, 2015 at 00:44 | #5

    Exceptional post but I was wondering if you could write a litte more on this subject?
    I’d be very thankful if you could elaborate a little bit further.

  1. No trackbacks yet.