Any protection update against CVE-2021-40444 in exploit prevention. of endpoint Security and control 10.8

as subject

Parents Reply Children
  • I did a live query with the suggested code from the article and it gives me

    Complete, no data sent

    for all endpoints.

    The reg keys are not present. So there should be some message like "ActiveX setting does not match the Microsoft recommendation"

    SELECT name, type, data, datetime(mtime, 'unixepoch', 'localtime') AS registryWriteTime,
    CASE
       WHEN data = '3' THEN 'ActiveX set to DISABLED as recommended by Microsoft'
       ELSE 'ActiveX setting does not match the Microsoft recommendation'
    END AS mitigationStatus
    FROM registry
    WHERE path LIKE 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\%\1001' 
    OR path LIKE 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\%\1004'