Access is denied after applying security updates

I just applied updates KB923414 - KB924496 - KB923191 - KB924191 - KB922819.

To my dismay my own website on my own stand-alone local machine does not
work correctly anymore, as some scripts are not executed anymore.
Instead - after invoking the script error notifcation in IE -> Tools ->
Security I see the message: Access is denied, followed by the URL.
And also my life website has exactly the same problems for me ....

I tried several changes in the IE security settings but that did not help;
even Cusotm level LOW did not help :-\

But Mozilla Firefox has no problems at all )

So I deleted the installation of the above updates and now it works again.
No, I did not try the updates one by one to find out which one causes the
pain, as I think this is up to Microsoft developers.

I have switched off the Automatic Update function so that I will not be
surprised with an unwanted installation.
But alas: many of my website visitors also run IE and will experience the
same problem, I am afraid.

My website is here:
http://www.madpc.net/~firmament/
Just enter, click on "Latest Images w/Info" and try to pop-up one of the
thumbnail images: does not work after installing the above updates, but runs
without them.

I look forward to a simple workaround.

Best

Jan Timmermans

Jan,

Just tested your site and am not seeing the behavior you've described.
All the updates are installed, IE6 SP2, on an XP Pro SP2 system.
Did you see the yellow notice bar appear informing you that a popup was
blocked ?
Add :
http://www.madpc.net/~firmament/astr..._images.html&2
to the allowed popup sites or reenable the Notification Bar so that you
can approve the popup.

The following update SHOULD be installed ASAP as their is active
exploitation of this vulnerability currently on the net -
Microsoft Security Bulletin MS06-061
Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code
Execution (924191)
http://www.microsoft.com/technet/sec.../ms06-061.mspx


MowGreen [MVP 2003-2007]
===============
*-343-* FDNY
Never Forgotten
===============


Jan Timmermans wrote:

> I just applied updates KB923414 - KB924496 - KB923191 - KB924191 - KB922819.
>
> To my dismay my own website on my own stand-alone local machine does not
> work correctly anymore, as some scripts are not executed anymore.
> Instead - after invoking the script error notifcation in IE -> Tools ->
> Security I see the message: Access is denied, followed by the URL.
> And also my life website has exactly the same problems for me ....
>
> I tried several changes in the IE security settings but that did not help;
> even Cusotm level LOW did not help :-\
>
> But Mozilla Firefox has no problems at all )
>
> So I deleted the installation of the above updates and now it works again.
> No, I did not try the updates one by one to find out which one causes the
> pain, as I think this is up to Microsoft developers.
>
> I have switched off the Automatic Update function so that I will not be
> surprised with an unwanted installation.
> But alas: many of my website visitors also run IE and will experience the
> same problem, I am afraid.
>
> My website is here:
> http://www.madpc.net/~firmament/
> Just enter, click on "Latest Images w/Info" and try to pop-up one of the
> thumbnail images: does not work after installing the above updates, but runs
> without them.
>
> I look forward to a simple workaround.
>
> Best
>
> Jan Timmermans

Hi MowGreen

Thanks for your speedy reply !!!
I am pleased that my website works for you as it means that (hopefully) the
problem is maybe just on my machine.

I did not see the yellow notice bar, as I have switched the ennoying
information bar off.
But wen I switched it ON, I saw the bar and allowed my page for popup.
Alas: clicking on the thumbnail did not give the popped up image, nothing
happened.

And when I went to this newsgroup I could not popup the answer in 'full
format'.
But when I deleted the updates I could popup again ...

I assume it must be some security setting which somehow conflicts with the
set of new updates.

Any ideas ??

Jan

"MowGreen [MVP]" wrote:

> Jan,
>
> Just tested your site and am not seeing the behavior you've described.
> All the updates are installed, IE6 SP2, on an XP Pro SP2 system.
> Did you see the yellow notice bar appear informing you that a popup was
> blocked ?
> Add :
> http://www.madpc.net/~firmament/astr..._images.html&2
> to the allowed popup sites or reenable the Notification Bar so that you
> can approve the popup.
>
> The following update SHOULD be installed ASAP as their is active
> exploitation of this vulnerability currently on the net -
> Microsoft Security Bulletin MS06-061
> Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code
> Execution (924191)
> http://www.microsoft.com/technet/sec.../ms06-061.mspx
>
>
> MowGreen [MVP 2003-2007]
> ===============
> *-343-* FDNY
> Never Forgotten
> ===============
>
>
> Jan Timmermans wrote:
>
> > I just applied updates KB923414 - KB924496 - KB923191 - KB924191 - KB922819.
> >
> > To my dismay my own website on my own stand-alone local machine does not
> > work correctly anymore, as some scripts are not executed anymore.
> > Instead - after invoking the script error notifcation in IE -> Tools ->
> > Security I see the message: Access is denied, followed by the URL.
> > And also my life website has exactly the same problems for me ....
> >
> > I tried several changes in the IE security settings but that did not help;
> > even Cusotm level LOW did not help :-\
> >
> > But Mozilla Firefox has no problems at all )
> >
> > So I deleted the installation of the above updates and now it works again.
> > No, I did not try the updates one by one to find out which one causes the
> > pain, as I think this is up to Microsoft developers.
> >
> > I have switched off the Automatic Update function so that I will not be
> > surprised with an unwanted installation.
> > But alas: many of my website visitors also run IE and will experience the
> > same problem, I am afraid.
> >
> > My website is here:
> > http://www.madpc.net/~firmament/
> > Just enter, click on "Latest Images w/Info" and try to pop-up one of the
> > thumbnail images: does not work after installing the above updates, but runs
> > without them.
> >
> > I look forward to a simple workaround.
> >
> > Best
> >
> > Jan Timmermans
>

Howdy Jan,

I don't *think* that any of the updates are causing the issue. Then
again, I could be wrong
I don't use the web-based reader, rather through an email client, so I
don't see popups here.
Suggest you install the updates one at a time and then test if
functionality is hindered on your web page.

Since the thumbnails are dependent on javascript to open I'd look to the
blocking of javascript on your system as being the culprit.
None of the updates deal with javascript.

BTW, I posted the *wrong* update that should be installed ASAP. It's
this one: Microsoft Security Bulletin MS06-055
Vulnerability in Vector Markup Language Could Allow Remote Code
Execution (925486)
http://www.microsoft.com/technet/sec.../MS06-055.mspx

Sorry about that !

MowGreen [MVP 2003-2007]
===============
*-343-* FDNY
Never Forgotten
===============


Jan Timmermans wrote:

> Hi MowGreen
>
> Thanks for your speedy reply !!!
> I am pleased that my website works for you as it means that (hopefully) the
> problem is maybe just on my machine.
>
> I did not see the yellow notice bar, as I have switched the ennoying
> information bar off.
> But wen I switched it ON, I saw the bar and allowed my page for popup.
> Alas: clicking on the thumbnail did not give the popped up image, nothing
> happened.
>
> And when I went to this newsgroup I could not popup the answer in 'full
> format'.
> But when I deleted the updates I could popup again ...
>
> I assume it must be some security setting which somehow conflicts with the
> set of new updates.
>
> Any ideas ??
>
> Jan
>
> "MowGreen [MVP]" wrote:
>
>
>>Jan,
>>
>>Just tested your site and am not seeing the behavior you've described.
>>All the updates are installed, IE6 SP2, on an XP Pro SP2 system.
>>Did you see the yellow notice bar appear informing you that a popup was
>>blocked ?
>>Add :
>>http://www.madpc.net/~firmament/astr..._images.html&2
>>to the allowed popup sites or reenable the Notification Bar so that you
>>can approve the popup.
>>
>>The following update SHOULD be installed ASAP as their is active
>>exploitation of this vulnerability currently on the net -
>>Microsoft Security Bulletin MS06-061
>>Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code
>>Execution (924191)
>>http://www.microsoft.com/technet/sec.../ms06-061.mspx
>>
>>
>>MowGreen [MVP 2003-2007]
>>===============
>> *-343-* FDNY
>>Never Forgotten
>>===============
>>
>>
>>Jan Timmermans wrote:
>>
>>
>>>I just applied updates KB923414 - KB924496 - KB923191 - KB924191 - KB922819.
>>>
>>>To my dismay my own website on my own stand-alone local machine does not
>>>work correctly anymore, as some scripts are not executed anymore.
>>>Instead - after invoking the script error notifcation in IE -> Tools ->
>>>Security I see the message: Access is denied, followed by the URL.
>>>And also my life website has exactly the same problems for me ....
>>>
>>>I tried several changes in the IE security settings but that did not help;
>>>even Cusotm level LOW did not help :-\
>>>
>>>But Mozilla Firefox has no problems at all )
>>>
>>>So I deleted the installation of the above updates and now it works again.
>>>No, I did not try the updates one by one to find out which one causes the
>>>pain, as I think this is up to Microsoft developers.
>>>
>>>I have switched off the Automatic Update function so that I will not be
>>>surprised with an unwanted installation.
>>>But alas: many of my website visitors also run IE and will experience the
>>>same problem, I am afraid.
>>>
>>>My website is here:
>>>http://www.madpc.net/~firmament/
>>>Just enter, click on "Latest Images w/Info" and try to pop-up one of the
>>>thumbnail images: does not work after installing the above updates, but runs
>>>without them.
>>>
>>>I look forward to a simple workaround.
>>>
>>>Best
>>>
>>>Jan Timmermans
>>

Jan,

Well, that's the SECOND mistake. The update is (and I promise, this IS
the one : Microsoft Security Bulletin MS06-057
Vulnerability in Windows Explorer Could Allow Remote Execution (923191)
http://www.microsoft.com/technet/sec.../MS06-057.mspx

There are active exploits circulating on the internet and the above
should be installed ASAP.

MG


MowGreen [MVP] wrote:

> Howdy Jan,
>
> I don't *think* that any of the updates are causing the issue. Then
> again, I could be wrong
> I don't use the web-based reader, rather through an email client, so I
> don't see popups here.
> Suggest you install the updates one at a time and then test if
> functionality is hindered on your web page.
>
> Since the thumbnails are dependent on javascript to open I'd look to the
> blocking of javascript on your system as being the culprit.
> None of the updates deal with javascript.
>
> BTW, I posted the *wrong* update that should be installed ASAP. It's
> this one: Microsoft Security Bulletin MS06-055
> Vulnerability in Vector Markup Language Could Allow Remote Code
> Execution (925486)
> http://www.microsoft.com/technet/sec.../MS06-055.mspx
>
> Sorry about that !
>
> MowGreen [MVP 2003-2007]
> ===============
> *-343-* FDNY
> Never Forgotten
> ===============
>
>
> Jan Timmermans wrote:
>
>> Hi MowGreen
>>
>> Thanks for your speedy reply !!!
>> I am pleased that my website works for you as it means that
>> (hopefully) the problem is maybe just on my machine.
>>
>> I did not see the yellow notice bar, as I have switched the ennoying
>> information bar off.
>> But wen I switched it ON, I saw the bar and allowed my page for popup.
>> Alas: clicking on the thumbnail did not give the popped up image,
>> nothing happened.
>>
>> And when I went to this newsgroup I could not popup the answer in
>> 'full format'.
>> But when I deleted the updates I could popup again ...
>>
>> I assume it must be some security setting which somehow conflicts with
>> the set of new updates.
>>
>> Any ideas ??
>>
>> Jan
>> "MowGreen [MVP]" wrote:
>>
>>
>>> Jan,
>>>
>>> Just tested your site and am not seeing the behavior you've described.
>>> All the updates are installed, IE6 SP2, on an XP Pro SP2 system.
>>> Did you see the yellow notice bar appear informing you that a popup
>>> was blocked ?
>>> Add :
>>> http://www.madpc.net/~firmament/astr..._images.html&2
>>>
>>> to the allowed popup sites or reenable the Notification Bar so that
>>> you can approve the popup.
>>>
>>> The following update SHOULD be installed ASAP as their is active
>>> exploitation of this vulnerability currently on the net -
>>> Microsoft Security Bulletin MS06-061
>>> Vulnerabilities in Microsoft XML Core Services Could Allow Remote
>>> Code Execution (924191)
>>> http://www.microsoft.com/technet/sec.../ms06-061.mspx
>>>
>>>
>>> MowGreen [MVP 2003-2007]
>>> ===============
>>> *-343-* FDNY
>>> Never Forgotten
>>> ===============
>>>
>>>
>>> Jan Timmermans wrote:
>>>
>>>
>>>> I just applied updates KB923414 - KB924496 - KB923191 - KB924191 -
>>>> KB922819.
>>>>
>>>> To my dismay my own website on my own stand-alone local machine does
>>>> not work correctly anymore, as some scripts are not executed anymore.
>>>> Instead - after invoking the script error notifcation in IE -> Tools
>>>> -> Security I see the message: Access is denied, followed by the URL.
>>>> And also my life website has exactly the same problems for me ....
>>>>
>>>> I tried several changes in the IE security settings but that did not
>>>> help; even Cusotm level LOW did not help :-\
>>>>
>>>> But Mozilla Firefox has no problems at all )
>>>>
>>>> So I deleted the installation of the above updates and now it works
>>>> again.
>>>> No, I did not try the updates one by one to find out which one
>>>> causes the pain, as I think this is up to Microsoft developers.
>>>>
>>>> I have switched off the Automatic Update function so that I will not
>>>> be surprised with an unwanted installation.
>>>> But alas: many of my website visitors also run IE and will
>>>> experience the same problem, I am afraid.
>>>>
>>>> My website is here:
>>>> http://www.madpc.net/~firmament/ Just enter, click on "Latest Images
>>>> w/Info" and try to pop-up one of the thumbnail images: does not work
>>>> after installing the above updates, but runs without them.
>>>>
>>>> I look forward to a simple workaround.
>>>>
>>>> Best
>>>>
>>>> Jan Timmermans
>>>
>>>

Hi MowGreen

Making mistakes is a human virtue: I do it all the time <grin>

I am pleased to tell you that KB923191 apparently is not the culprit,
because with only this update applied the popups works as required.

Here it is long past midnight, so I will continue tomorrow (my time)

Thanks for all the help so far: together we will get to the bottom of this !

Jan

"MowGreen [MVP]" wrote:

> Jan,
>
> Well, that's the SECOND mistake. The update is (and I promise, this IS
> the one : Microsoft Security Bulletin MS06-057
> Vulnerability in Windows Explorer Could Allow Remote Execution (923191)
> http://www.microsoft.com/technet/sec.../MS06-057.mspx
>
> There are active exploits circulating on the internet and the above
> should be installed ASAP.
>
> MG
>
>
> MowGreen [MVP] wrote:
>
> > Howdy Jan,
> >
> > I don't *think* that any of the updates are causing the issue. Then
> > again, I could be wrong
> > I don't use the web-based reader, rather through an email client, so I
> > don't see popups here.
> > Suggest you install the updates one at a time and then test if
> > functionality is hindered on your web page.
> >
> > Since the thumbnails are dependent on javascript to open I'd look to the
> > blocking of javascript on your system as being the culprit.
> > None of the updates deal with javascript.
> >
> > BTW, I posted the *wrong* update that should be installed ASAP. It's
> > this one: Microsoft Security Bulletin MS06-055
> > Vulnerability in Vector Markup Language Could Allow Remote Code
> > Execution (925486)
> > http://www.microsoft.com/technet/sec.../MS06-055.mspx
> >
> > Sorry about that !
> >
> > MowGreen [MVP 2003-2007]
> > ===============
> > *-343-* FDNY
> > Never Forgotten
> > ===============
> >
> >
> > Jan Timmermans wrote:
> >
> >> Hi MowGreen
> >>
> >> Thanks for your speedy reply !!!
> >> I am pleased that my website works for you as it means that
> >> (hopefully) the problem is maybe just on my machine.
> >>
> >> I did not see the yellow notice bar, as I have switched the ennoying
> >> information bar off.
> >> But wen I switched it ON, I saw the bar and allowed my page for popup.
> >> Alas: clicking on the thumbnail did not give the popped up image,
> >> nothing happened.
> >>
> >> And when I went to this newsgroup I could not popup the answer in
> >> 'full format'.
> >> But when I deleted the updates I could popup again ...
> >>
> >> I assume it must be some security setting which somehow conflicts with
> >> the set of new updates.
> >>
> >> Any ideas ??
> >>
> >> Jan
> >> "MowGreen [MVP]" wrote:
> >>
> >>
> >>> Jan,
> >>>
> >>> Just tested your site and am not seeing the behavior you've described.
> >>> All the updates are installed, IE6 SP2, on an XP Pro SP2 system.
> >>> Did you see the yellow notice bar appear informing you that a popup
> >>> was blocked ?
> >>> Add :
> >>> http://www.madpc.net/~firmament/astr..._images.html&2
> >>>
> >>> to the allowed popup sites or reenable the Notification Bar so that
> >>> you can approve the popup.
> >>>
> >>> The following update SHOULD be installed ASAP as their is active
> >>> exploitation of this vulnerability currently on the net -
> >>> Microsoft Security Bulletin MS06-061
> >>> Vulnerabilities in Microsoft XML Core Services Could Allow Remote
> >>> Code Execution (924191)
> >>> http://www.microsoft.com/technet/sec.../ms06-061.mspx
> >>>
> >>>
> >>> MowGreen [MVP 2003-2007]
> >>> ===============
> >>> *-343-* FDNY
> >>> Never Forgotten
> >>> ===============
> >>>
> >>>
> >>> Jan Timmermans wrote:
> >>>
> >>>
> >>>> I just applied updates KB923414 - KB924496 - KB923191 - KB924191 -
> >>>> KB922819.
> >>>>
> >>>> To my dismay my own website on my own stand-alone local machine does
> >>>> not work correctly anymore, as some scripts are not executed anymore.
> >>>> Instead - after invoking the script error notifcation in IE -> Tools
> >>>> -> Security I see the message: Access is denied, followed by the URL.
> >>>> And also my life website has exactly the same problems for me ....
> >>>>
> >>>> I tried several changes in the IE security settings but that did not
> >>>> help; even Cusotm level LOW did not help :-\
> >>>>
> >>>> But Mozilla Firefox has no problems at all )
> >>>>
> >>>> So I deleted the installation of the above updates and now it works
> >>>> again.
> >>>> No, I did not try the updates one by one to find out which one
> >>>> causes the pain, as I think this is up to Microsoft developers.
> >>>>
> >>>> I have switched off the Automatic Update function so that I will not
> >>>> be surprised with an unwanted installation.
> >>>> But alas: many of my website visitors also run IE and will
> >>>> experience the same problem, I am afraid.
> >>>>
> >>>> My website is here:
> >>>> http://www.madpc.net/~firmament/ Just enter, click on "Latest Images
> >>>> w/Info" and try to pop-up one of the thumbnail images: does not work
> >>>> after installing the above updates, but runs without them.
> >>>>
> >>>> I look forward to a simple workaround.
> >>>>
> >>>> Best
> >>>>
> >>>> Jan Timmermans
> >>>
> >>>
>

Hi MowGreen

"MowGreen [MVP]" wrote:

> I don't *think* that any of the updates are causing the issue. Then
> again, I could be wrong

I *think* you are wrong indeed: see the following .....
1. Installed KB923191 only: OK !
2. Installed all 5 updates (KB923191 + KB923414 + KB924496 +KB924191 +
KB922819): problem persist
3. Using 'add/remove programs' of the Control Panel I uninstalled one of the
updates (NOT KB923191) and restarted my machine to see if that cured the
problem. I did this several times, each time picking another update (after
re-installing the whole lot).

When I removed KB924496 (so only KB923191 + KB923414 + KB924191 + KB922819)
were installed: SUCCESS !!!!

So somewhere KB924496 does something that conflicts with my machine (my
guess: some security setting maybe?)

> I don't use the web-based reader, rather through an email client, so I
> don't see popups here.

Ah, I think you should try on a 'real machine' so that you can see if it
really works or not.
Then you have proof.

> Suggest you install the updates one at a time and then test if
> functionality is hindered on your web page.

I did that: see above.

> Since the thumbnails are dependent on javascript to open I'd look to the
> blocking of javascript on your system as being the culprit.
> None of the updates deal with javascript.

That might be very true, but the problem still exists afterinstalling
KB924496 and of course I would like to see that cured.
I assume the problem might have to do with the 'Window Open' functions in my
scripts.

For the time being I have set the Automatic Update to 'notify me', thus
effectively blocking the automatic installation of KB924496.

Thanks for standing by my side: now I don't feel so lonely anymore )

Greetings from the Netherlands

Jan

Jan,

Nice detective work. So, since KB924496 appears to be the culprit, I did
a little research - from the Security Bulletin - Vulnerability Details
http://www.microsoft.com/technet/sec.../ms06-065.mspx
> A remote code execution vulnerability exists in Windows Object Packager because of the
> way that file extensions are handled.

Reading the " FAQ for Object Packager Dialogue Spoofing Vulnerability -
CVE-2006-4692: " leads to

> What causes the vulnerability?
> Improper handling of files by Object Packager.
>
> What is Object Packager?
> Object Packager is a tool that can be used to create a package that can inserted into a
> file. For more information about Object Packager, visit the following Microsoft Product
> Documentation.
http://www.microsoft.com/resources/d....mspx?mfr=true

" Object Packager is a tool you can use to create a package that you can
insert into a file.

The Object Packager window has two panes. The Appearance pane displays
the icon that will represent the package. The Content pane displays the
name of the file that contains the information you want to package.

To create a package, you copy the contents of the Appearance and Content
panes, and then paste the information into a file. The package appears
in the file as an icon.

You can activate a package icon by double-clicking it. When you do,
depending on the contents of the package, one of the following will occur:
• If the package contains a sound or animation file, the sound or
animation will play.
• If the package contains a picture, text, or spreadsheet, the *program
associated* with that file type will open and display the information.
For example, if the package contains a bitmap that was created in
Microsoft Paint, then Paint will open and display the picture.

Note
• You can insert a package into a file only if the file has been created
by a Windows-based program that supports drag-and-drop functions. "

It's Greek to me, Jan. What happens if you drop the javascript to show
the picture in a popup window and instead spawn another IE window using
HTML ?
BTW, the page functions in Firefox just fine


MowGreen [MVP 2003-2006]
===============
*-343-* FDNY
Never Forgotten
===============


Jan Timmermans wrote:

> Hi MowGreen
>
> "MowGreen [MVP]" wrote:
>
>
>>I don't *think* that any of the updates are causing the issue. Then
>>again, I could be wrong
>
>
> I *think* you are wrong indeed: see the following .....
> 1. Installed KB923191 only: OK !
> 2. Installed all 5 updates (KB923191 + KB923414 + KB924496 +KB924191 +
> KB922819): problem persist
> 3. Using 'add/remove programs' of the Control Panel I uninstalled one of the
> updates (NOT KB923191) and restarted my machine to see if that cured the
> problem. I did this several times, each time picking another update (after
> re-installing the whole lot).
>
> When I removed KB924496 (so only KB923191 + KB923414 + KB924191 + KB922819)
> were installed: SUCCESS !!!!
>
> So somewhere KB924496 does something that conflicts with my machine (my
> guess: some security setting maybe?)
>
>
>>I don't use the web-based reader, rather through an email client, so I
>>don't see popups here.
>
>
> Ah, I think you should try on a 'real machine' so that you can see if it
> really works or not.
> Then you have proof.
>
>
>>Suggest you install the updates one at a time and then test if
>>functionality is hindered on your web page.
>
>
> I did that: see above.
>
>
>>Since the thumbnails are dependent on javascript to open I'd look to the
>>blocking of javascript on your system as being the culprit.
>>None of the updates deal with javascript.
>
>
> That might be very true, but the problem still exists afterinstalling
> KB924496 and of course I would like to see that cured.
> I assume the problem might have to do with the 'Window Open' functions in my
> scripts.
>
> For the time being I have set the Automatic Update to 'notify me', thus
> effectively blocking the automatic installation of KB924496.
>
> Thanks for standing by my side: now I don't feel so lonely anymore )
>
> Greetings from the Netherlands
>
> Jan
>
>

Hi MowGreen

> Nice detective work.

Thank you !!!

> So, since KB924496 appears to be the culprit, I did
> a little research - from the Security Bulletin - Vulnerability Details
> http://www.microsoft.com/technet/sec.../ms06-065.mspx

<snip>

> It's Greek to me, Jan.

I don't understand it either ...

> What happens if you drop the javascript to show
> the picture in a popup window and instead spawn another IE window using
> HTML ?

HTML cannot do what I require (i.e. a window open with e.g. a slideshow), so
I am not going to try that.
And I am not going to rebuild my whole huge website because of an obvious
bug an an MS update.

> BTW, the page functions in Firefox just fine

Indeed it does.
But I think Microsoft Internet Explorer should behave, just as Firefox does.

Just a thought: would it make a difference if I would apply the 5 updates in
a specific order?
It does not say so, but it *might* be a hidden prerequisite ..
Any ideas about this?

Or do you have contacts with MS Development to cure the erroneous update?

Best

Jan (wo is right now in his observatory in the darkness - which makes typing
not easy - busy imaging far away nebulea )

> Just a thought: would it make a difference if I would apply the 5 updates in
> a specific order?
> It does not say so, but it *might* be a hidden prerequisite ..
> Any ideas about this?

Don't think so as they deal with different files and killbits in the
registry. KB924496 replaces these 2 files:
Browseui.dll - Browseui.dll is used by windows to talk to shell browser
interface.
Shdocvw.dll -
http://msdn.microsoft.com/workshop/b...w/Overview.asp

Your page functions on my system with IE, so I don't think that there is
an issue with the update.
If you'd like, I could ask some fellow MVPs to visit the site with IE to
see if any of their systems reproduce the issue.


MowGreen [MVP 2003-2007]
===============
*-343-* FDNY
Never Forgotten
===============


Jan Timmermans wrote:

> Hi MowGreen
>
>
>>Nice detective work.
>
>
> Thank you !!!
>
>
>>So, since KB924496 appears to be the culprit, I did
>>a little research - from the Security Bulletin - Vulnerability Details
>>http://www.microsoft.com/technet/sec.../ms06-065.mspx
>
>
> <snip>
>
>>It's Greek to me, Jan.
>
>
> I don't understand it either ...
>
>
>>What happens if you drop the javascript to show
>>the picture in a popup window and instead spawn another IE window using
>>HTML ?
>
>
> HTML cannot do what I require (i.e. a window open with e.g. a slideshow), so
> I am not going to try that.
> And I am not going to rebuild my whole huge website because of an obvious
> bug an an MS update.
>
>
>>BTW, the page functions in Firefox just fine
>
>
> Indeed it does.
> But I think Microsoft Internet Explorer should behave, just as Firefox does.
>
> Just a thought: would it make a difference if I would apply the 5 updates in
> a specific order?
> It does not say so, but it *might* be a hidden prerequisite ..
> Any ideas about this?
>
> Or do you have contacts with MS Development to cure the erroneous update?
>
> Best
>
> Jan (wo is right now in his observatory in the darkness - which makes typing
> not easy - busy imaging far away nebulea )
>