After you install the cumulative update for Internet Explorer that is dated August 9, 2011, you can choose to prevent the drag-and-drop of content into a webpage that originates in a different domain. This can help avoid attacks where a malicious site may trick you into unknowingly selecting possibly sensitive content from one website and dropping the content into a possibly malicious website.
For more information about the cumulative update, click the following article number to view the article in the Microsoft Knowledge Base:
To undo the fix and restore the original settings, click the Fix this problem link under the "Disable this fix" heading. Then, click Run in the File Download dialog box, and follow the steps in the wizard.
|Enable this fix||Disable this fix|
- This wizard may be in English only. However, the automatic fix also works for other language versions of Windows.
- If you are not on the computer that has the problem, you can save the automatic fix to a flash drive or to a CD, and then you can run it on the computer that has the problem.
Note Each subkey affects whether you can drag-and-drop content into a webpage in a particular Internet Explorer security zone.
To enable this fix for webpages in the Internet zone:
To enable this fix for webpages in the Local Intranet zone:
To enable this fix for webpages in the Trusted Sites zone:
To enable this fix for webpages in the Restricted Sites zone:
To enable this fix for webpages in the Local Machine zone:
|Value Name||Data type||Value||Meaning|
|2708||dword||0x03||Prevent the dragging of content from a webpage and dropping it into a webpage from a different domain but in the same window|
|2709||dword||0x03||Prevent the dragging of content from a webpage and dropping it into a webpage from a different domain in a different window|
Note These settings do not affect your ability to copy-and-paste content from one webpage to another webpage.
Article ID: 2581921 - Last Review: Aug 9, 2011 - Revision: 1