This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Any protection update against CVE-2021-40444 in exploit prevention. of endpoint Security and control 10.8

as subject

This thread was automatically locked due to age.
Parents Reply
  • I did a live query with the suggested code from the article and it gives me

    Complete, no data sent

    for all endpoints.

    The reg keys are not present. So there should be some message like "ActiveX setting does not match the Microsoft recommendation"

    SELECT name, type, data, datetime(mtime, 'unixepoch', 'localtime') AS registryWriteTime,
       WHEN data = '3' THEN 'ActiveX set to DISABLED as recommended by Microsoft'
       ELSE 'ActiveX setting does not match the Microsoft recommendation'
    END AS mitigationStatus
    FROM registry
    WHERE path LIKE 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\%\1001' 
    OR path LIKE 'HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\%\1004'