Re: Microsoft Knowledge Base Article - 870669
How to disable the ADODB.Stream object from Internet Explorer
You may recently have heard of the vulnarability exposed by Internet
Explorer as described in that article:
"An ADO stream object contains methods for reading and writing binary
files and text files. When an ADO stream object is combined with known
security vulnerabilities in Internet Explorer, a Web site could
execute scripts from the Local Machine zone. To help protect your
computer from this kind of attack, you can manually modify your
registry."
I'm using the ADODB.Stream object in an asp page to provide Intranet
users in a corporate environment a facility to upload and download
documents, such as Word and Excel, into an Access database.
When the security patch will be installed, this functionality will
have to be rewritten using another method than ADODB.Stream. Does
anyone know any alternative to uploading and downloading documents to
and from a MS Access database, from within an .asp page hosted in IIS?
I would prefer methods that do not require a COM component to be
installed on the server.
Thanks