Microsoft Security Advisory (2719662)
The 2719662 advisory recommends setting the "Turn Off Windows Sidebar" (located in the Windows Components\Windows Sidebar) to enabled. This GPO setting does not exist in Windows 7 and is not documented as part of the published Windows 7 GPO setting
spreadsheet. From what I understand this setting should really be "Turn off desktop gadgets" located in Windows Components\Desktop Gadgets.
Can MS please verify this is correct?
Thanks
July 11th, 2012 12:07pm
Some gadgets are not developed by Microsoft, so this advisory is to protect customers from some virus risks.
Here are two articles can be referred to.
Disable Sidebar / Desktop Gadgets on Windows 7
http://www.howtogeek.com/?post_type=post&p=3255
Windows 7 - Gadgets - Enable or Disable
http://www.sevenforums.com/tutorials/3674-gadgets-enable-disable.htmlIvan-Liu
TechNet Community Support
Free Windows Admin Tool Kit Click here and download it now
July 13th, 2012 2:11am
Some gadgets are not developed by Microsoft, so this advisory is to protect customers from some virus risks.
Here are two articles can be referred to.
Disable Sidebar / Desktop Gadgets on Windows 7
http://www.howtogeek.com/?post_type=post&p=3255
Windows 7 - Gadgets - Enable or Disable
http://www.sevenforums.com/tutorials/3674-gadgets-enable-disable.html
Ivan-Liu
TechNet Community Support
If the problem is only with new gadgets, wouldn't simply enabling the GPO "Restrict unpacking and installation of gadgets that are not digitally signed" be good enough instead of disabling all gadgets?
Is there a risk that the current default gadgets built into Windows 7 such as the clock, weather, currency and CPU gadgets can be compromised due to this newly discovered vulnerability?
If not, simply blocking users from downloading and installing new gadgets should be enough. I don't know why Microsoft simply didn't create a Fixit or security update that disabled third party gadgets.
July 16th, 2012 5:12pm
Microsoft Security Advisory (2719662)
http://technet.microsoft.com/en-gb/security/advisory/2719662
Microsoft Security Advisory: Vulnerabilities in Gadgets could allow remote code execution
http://support.microsoft.com/kb/2719662Ivan-Liu
TechNet Community Support
Free Windows Admin Tool Kit Click here and download it now
July 16th, 2012 9:49pm
Microsoft Security Advisory (2719662)
http://technet.microsoft.com/en-gb/security/advisory/2719662
Microsoft Security Advisory: Vulnerabilities in Gadgets could allow remote code execution
http://support.microsoft.com/kb/2719662Ivan-Liu
TechNet Community Support
July 16th, 2012 9:49pm