Internet Explorer ActiveX compatibility patch for Mshtml.dll

Article ID: 917425 - View products that this article applies to.
Expand all | Collapse all

On This Page

Notice

The update that this article describes has been replaced by a newer update. To resolve the problem that this article describes, install the most current cumulative security update for Internet Explorer. To install the most current update, visit the following Microsoft Web site:
http://update.microsoft.com
(http://update.microsoft.com)
For more technical information about the most current cumulative security update for Internet Explorer, visit the following Microsoft Web site:
http://www.microsoft.com/technet/security/current.aspx
(http://www.microsoft.com/technet/security/current.aspx)
This article is intended for IT professionals. Home users can visit the following Microsoft Web site for information about the symptoms that they may experience:
http://www.microsoft.com/windows/ie/ie6/using/techinfo/activexupdate.mspx
(http://www.microsoft.com/windows/ie/ie6/using/techinfo/activexupdate.mspx)
Back to the top | Give Feedback

Introduction

Microsoft is releasing a compatibility patch that will disable the behavior of the Microsoft Internet Explorer ActiveX patch that was originally released on February 28, 2006. The Internet Explorer ActiveX patch is also included in Internet Explorer security update 912812 (Microsoft Security Bulletin MS06-013). The update affects the following products:
  • Windows XP Service Pack 2 (SP2)
  • Windows XP Professional x64 Edition
  • Windows Server 2003 Service Pack 1 (SP1)
  • Windows Server 2003, x64-based versions
  • Windows Server 2003 with SP1, Itanium-based versions
Note The update does not apply to Windows Vista.

This update was discussed in Microsoft Security Advisory (912945): Non-Security Update for Internet Explorer. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
912945
(http://support.microsoft.com/kb/912945/ )
Internet Explorer ActiveX update
The compatibility patch includes the following updates:
  • Compatibility Patch for Internet Explorer for Windows XP SP2
  • Compatibility Patch for Internet Explorer for Windows Server 2003 SP1
  • Compatibility Patch for Internet Explorer for Windows Server 2003 SP1, Itanium-based versions
  • Compatibility Patch for Internet Explorer for Windows Server 2003, x64-based versions
  • Compatibility Patch for Internet Explorer for Windows XP Professional x64 Edition

Re-release information

The compatibility patch was re-released on April 20, 2006. If you have already deployed the original release of this compatibility patch and you are not experiencing any issues, you do not have to re-deploy this compatibility patch.

This re-released compatibility patch resolves a display issue for ActiveX controls that were developed by using Microsoft Visual Basic. Security update 912812 (Microsoft Security Bulletin MS06-013) may prevent a VBScript script from controlling the visibility of these ActiveX controls. For example, if the ActiveX control was originally hidden by using the visibility:hidden DHTML element attribute, and then later the attribute property is set to visibility:visible by a script, the ActiveX control does not display.

This display issue for ActiveX controls that were developed by using Microsoft Visual Basic is currently under review and a fix for this issue could be included in a future security update for Internet Explorer.
Back to the top | Give Feedback

MORE INFORMATION

When you deploy this patch, it disables the behavior of the Internet Explorer ActiveX patch that is contained in update KB912812. The security updates that are contained in update KB912812 are still present and are still functional. Only the Internet Explorer ActiveX patch behavior that is described in update KB912945 is disabled. For more information about the KB912812 update, click the following article number to view the article in the Microsoft Knowledge Base:
912812
(http://support.microsoft.com/kb/912812/ )
MS06-013: Cumulative security update for Internet Explorer
This compatibility patch can only be installed on systems that are running the Internet Explorer April Cumulative Update (KB912812). If you try to install this patch on systems without update 912812, the installation will fail.

We strongly recommend that this compatibility patch be deployed only to systems that are affected by the new functionality that is introduced by the Internet Explorer ActiveX update. Affected systems are those where the user depends on a Web page or on an application that has been affected by the Internet Explorer ActiveX update. For more information about how Web pages or applications can be affected, click the following article number to view the article in the Microsoft Knowledge Base:
912945
(http://support.microsoft.com/kb/912945/ )
Internet Explorer ActiveX update
We encourage our partners to test and to redesign affected Web applications. Owners of applications that require user interaction with ActiveX controls can use technologies to avoid user activation. For information about these technologies, visit the following MSDN Web site:
http://msdn.microsoft.com/en-us/ie/
(http://msdn.microsoft.com/en-us/ie/)

Testing

For testing, there is a feature control registry subkey that turns on the Internet Explorer ActiveX behavior. This registry subkey and its value are as follows:
HKEY_LOCAL_MACHINE (or HKEY_CURRENT_USER)\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_ACTIVEX_INACTIVATE_MODE\<process_name.exe>=(DWORD) 0x00000001
You must replace <process_name.exe> with the name of the process for which you want to enable the ActiveX update behavior. For example, to enable the ActiveX update behavior for Internet Explorer, you would replace <process_name.exe> with iexplore.exe.

Deployment

We strongly recommend that you apply this patch only to computers where there is a compatibility problem between an existing application and the new behavior that is introduced in update 912945 and described in Microsoft Knowledge Base article 912812. This section lists several, but not all, deployment options. You should follow the standard hotfix deployment process for your environment. This article contains some details that are specific to deployment. However, this article is intended as a reference for some, but not all, deployment options.

The deployment process consists of the following steps:
  1. Identify applicable computers.
  2. Apply the update to those computers.

Restart requirement

Installation of this compatibility patch may require a restart if the Mshtml.dll file is being used during installation.

Identifying applicable computers

Microsoft Knowledge Base article 917425 (KB917425) can be applied to a computer where Internet Explorer ActiveX behavior has a compatibility problem with an application on the computer. To determine whether KB917425 applies to a computer programmatically, you must have a guaranteed method of determining whether a computer has the affected ActiveX software. Work with the software application’s vendor to determine that method. To manually determine whether KB917425 applies to a computer, use the following methods.
  • Use Active Directory organizational units
    If an environment is supported by the Active Directory directory service and if an existing Active Directory organizational unit contains all applicable computers, apply a Microsoft Systems Management Server (SMS) software update package to the organizational unit.

    Note SMS Active Directory discovery must be enabled to use this method.
  • Use SMS Software Inventory to create a custom collection
    For environments that use SMS to deploy software to computers, an administrator can create a custom collection that is based on any number of factors. These factors include a query of computers that have the affected software package. This query can be based on the results of SMS Software Inventory. For information about how to implement software inventory that includes creating custom collections, visit the following Microsoft Web site:
    http://technet.microsoft.com/en-us/library/cc180952.aspx
    (http://technet.microsoft.com/en-us/library/cc180952.aspx)
  • Create a custom detection tool that identifies applicable computers
    Create a script or a small executable program that determines whether the computer has the affected software package. This tool can run as part of a logon script, can be delivered as a SMS Software Update Package, or can be put on an internal network share that users can access.

Applying the update to applicable computers

How to use SMS

If you are using Active Directory organizational units or SMS Software Inventory to identify computers to update, you can use SMS 2.0 and SMS 2003 to deploy the 917425 package to affected computers. To do this, use the SMS software distribution feature. To see a high-level walk-through of the process, visit the following Microsoft Web site:
http://technet.microsoft.com/en-us/library/cc917507.aspx
(http://technet.microsoft.com/en-us/library/cc917507.aspx)
For more information, see the Systems Management Server 2003 Operations Guide. To view this guide, visit the following Microsoft Web site:
http://technet.microsoft.com/en-us/library/cc182024.aspx
(http://technet.microsoft.com/en-us/library/cc182024.aspx)

Package definition file

To help customers use SMS to deploy the 917425 package, we are including the contents of a sample SMS package definition file (PDF) that can be used to create the software distribution package and the programs in the SMS Administrator console.

To use the sample PDF, copy the following text to a Notepad file, and then save the file as KB917425.SMS. Copy this file to the same directory where the download update was saved. 
[PDF]
Version=2.0

[Package Definition]
Publisher=Microsoft
Name=Compatibility Patch for Internet Explorer (KB917425)
Language=ALL
Programs=WinXPx86,WS03x86,WS03IA64,WinXPWS03x64

[WinXPx86]
Name=(KB917425) Windows XP SP2
CommandLine=WindowsXP-KB917425-x86-ENU.exe /quiet /norestart
UserInputRequired=False
AdminRightsRequired=True
CanRunWhen=AnyUserStatus
SupportedClients=Win NT (I386)
Win NT (I386) MinVersion1=5.10.0000.0
Win NT (I386) MaxVersion1=5.10.9999.9999

[WS03x86]
Name=(KB917425) Windows Server 2003 
CommandLine=WindowsServer2003-KB917425-x86-ENU.exe /quiet /norestart
UserInputRequired=False
AdminRightsRequired=True
CanRunWhen=AnyUserStatus
SupportedClients=Win NT (I386)
Win NT (I386) MinVersion1=5.20.0000.0
Win NT (I386) MaxVersion1=5.20.9999.9999

[WS03IA64]
Name=(KB917425) Windows Server 2003 64-bit Itanium Edition
CommandLine=WindowsServer2003-KB917425-ia64-ENU.exe /quiet /norestart
UserInputRequired=False
AdminRightsRequired=True
CanRunWhen=AnyUserStatus
SupportedClients=Win NT (IA-64)
Win NT (IA-64) MinVersion1=5.20.0000.0
Win NT (IA-64) MaxVersion1=5.20.9999.9999

[WinXPWS03x64]
Name=(KB917425) Windows Server 2003 and Windows XP x64 Edition 
CommandLine=WindowsServer2003.WindowsXP-KB917425-x64-ENU.exe /quiet /norestart
UserInputRequired=False
AdminRightsRequired=True
CanRunWhen=AnyUserStatus
SupportedClients=Win NT (x64)
Win NT (x64) MinVersion1=5.20.0000.0
Win NT (x64) MaxVersion1=5.20.9999.9999
Win NT (x64) MinVersion2=5.20.3790.0
Win NT (x64) MaxVersion2=5.20.9999.9999
After the PDF and the update packages have been saved to the same directory, follow these steps:
  1. Run the Create Package from Definition Wizard. To do this, right-click any existing package, click All Tasks, and then click Create Package from Definition.
  2. Import the PDF to create the package and the programs that you want to use for deployment.
Notes
  • 64-bit client deployments are only supported by SMS 2003 SP2 and later versions. If you have any earlier versions of SMS, you must delete the last two sections (WS03IA64, WinXPWS03x64) in the PDF. You must also remove WS03IA64 and WinXPWS03x64 from the "Programs=" line in the "[Package Definition]=" section.
  • If you use SMS to deploy any one of the localized versions of this patch, you need a separate version of the PDF for each language. To create a PDF for another language, replace the “CommandLine” value in the sample PDF with the name of the actual language specific package. For example, for the German version of Windows XP SP2 (x86) , use the following value.
    CommandLine=WindowsXP-KB917425-DEU.exe /quiet /norestart
For detailed information about how to create and deploy packages, see the Microsoft Systems Management Server 2003 Operations Guide.

How to use a custom method to apply the 917425 package

Assume the script or the executable program that you developed to determine whether the 917425 package is applicable has found an affected computer. At this point, the script or executable program could:
  • Run the 917425 package from an internal network share where you have saved the package.
  • Download the 917425 package from a Microsoft download site. In this case, the user must allow the package to run.
  • Point the user to the 917425 package download location to install manually.

Download information

The following files are available for download from the Microsoft Download Center:

Compatibility Patch for Internet Explorer for Windows XP Professional with Service Pack 2 (SP2) and for Windows XP Home Edition with SP2
Collapse this imageExpand this image
Download
Download the 917425 package now.
(http://www.microsoft.com/downloads/details.aspx?FamilyId=B7D9801B-4FB5-492E-903E-3400ABF1D731)
Compatibility Patch for Internet Explorer for Windows Server 2003 SP1
Collapse this imageExpand this image
Download
Download the 917425 package now.
(http://www.microsoft.com/downloads/details.aspx?FamilyId=16C36301-6110-4945-A02E-88A59745CF4F)
Compatibility Patch for Internet Explorer for Windows Server 2003 SP1, Itanium-based versions
Collapse this imageExpand this image
Download
Download the 917425 package now.
(http://www.microsoft.com/downloads/details.aspx?FamilyId=2B41D8A1-7465-43C3-8DE9-66B78C7DC9BE)
Compatibility Patch for Internet Explorer for Windows Server 2003, x64-based versions
Collapse this imageExpand this image
Download
Download the 917425 package now.
(http://www.microsoft.com/downloads/details.aspx?FamilyId=05E56EB2-8278-4511-8EC0-093CD6EEA170)
Compatibility Patch for Internet Explorer for Windows XP Professional x64 Edition
Collapse this imageExpand this image
Download
Download the 917425 package now.
(http://www.microsoft.com/downloads/details.aspx?FamilyId=111C1263-33DF-4628-B29B-5A342F4B8774)
Release Date: April 11, 2006

For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591
(http://support.microsoft.com/kb/119591/ )
How to obtain Microsoft support files from online services
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file.

File information

The English version of this hotfix has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
Internet Explorer for Windows Server 2003 SP1, Itanium-based versions
Collapse this tableExpand this table
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Mshtml.dll6.0.3790.26789,364,99212-Apr-200603:50IA-64SP1SP1G
Wmshtml.dll6.0.3790.26783,150,84812-Apr-200603:50x86SP1WOW
Mshtml.dll6.0.3790.26789,367,55212-Apr-200603:47IA-64SP1SP1Q
Wmshtml.dll6.0.3790.26783,152,38412-Apr-200603:47x86SP1WOW
Updspapi.dll6.2.29.0638,68812-Apr-200603:55IA-64NoneNot Applicable

Internet Explorer for Windows XP SP2
Collapse this tableExpand this table
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Mshtml.dll6.0.2900.28833,053,56810-Apr-200604:22x86SP2SP2G
Mshtml.dll6.0.2900.28833,056,12810-Apr-200604:18x86SP2SP2Q
Updspapi.dll6.2.29.0371,42412-Oct-200523:12x86NoneNot Applicable

Internet Explorer for Windows Server 2003, x64-based versions
Collapse this tableExpand this table
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Mshtml.dll6.0.3790.26785,987,84012-Apr-200603:49Not ApplicableSP1SP1G
Wmshtml.dll6.0.3790.26783,150,84812-Apr-200603:49x86SP1WOW
Mshtml.dll6.0.3790.26785,988,86412-Apr-200603:47Not ApplicableSP1SP1Q
Wmshtml.dll6.0.3790.26783,152,38412-Apr-200603:47x86SP1WOW
Updspapi.dll6.2.29.0462,04812-Apr-200603:55Not ApplicableNoneNot Applicable

Internet Explorer for Windows Server 2003 SP1
Collapse this tableExpand this table
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Mshtml.dll6.0.3790.26783,150,84808-Apr-200603:11x86SP1SP1G
Mshtml.dll6.0.3790.26783,152,38408-Apr-200604:05x86SP1SP1Q
Updspapi.dll6.2.29.0371,42412-Oct-200523:13x86NoneNot Applicable

Technical support for x64-based versions of Microsoft Windows

If your hardware came with a Microsoft Windows x64 edition already installed, your hardware manufacturer provides technical support and assistance for the Windows x64 edition. In this case, your hardware manufacturer provides support because a Windows x64 edition was included with your hardware. Your hardware manufacturer might have customized the Windows x64 edition installation by using unique components. Unique components might include specific device drivers or might include optional settings to maximize the performance of the hardware. Microsoft will provide reasonable-effort assistance if you need technical help with a Windows x64 edition. However, you might have to contact your manufacturer directly. Your manufacturer is best qualified to support the software that your manufacturer installed on the hardware. If you purchased a Windows x64 edition such as a Microsoft Windows Server 2003 x64 edition separately, contact Microsoft for technical support.

For product information about Microsoft Windows XP Professional x64 Edition, visit the following Microsoft Web site:
http://www.microsoft.com/windowsxp/64bit/default.mspx
(http://www.microsoft.com/windowsxp/64bit/default.mspx)
For product information about x64-based versions of Microsoft Windows Server 2003, visit the following Microsoft Web site:
http://www.microsoft.com/windowsserver2003/64bit/x64/editions.mspx
(http://www.microsoft.com/windowsserver2003/64bit/x64/editions.mspx)
Back to the top | Give Feedback

Properties

Article ID: 917425 - Last Review: May 24, 2012 - Revision: 9.0
APPLIES TO
  • Microsoft Internet Explorer 6.0, when used with:
    • Microsoft Windows Server 2003, Datacenter x64 Edition
    • Microsoft Windows Server 2003, Enterprise x64 Edition
    • Microsoft Windows Server 2003, Standard x64 Edition
    • Microsoft Windows Server 2003 Service Pack 1
    • Microsoft Windows XP Professional x64 Edition
Keywords: 
atdownload kbresolve kbwinserv2003sp2fix kbqfe kbinfo KB917425
Back to the top | Give Feedback

Give Feedback

 
Back to the topBack to the top