METHOD FOR IDENTIFYING DISTRIBUTION SITES OF ACTIVEX CONTROLS AND VERIFYING SECURITY WEAKNESSES OF ACTIVEX CONTROLS AND IMMUNIZING ACTIVEX CONTROLS

摘要

PURPOSE: A distribution site identification method of an active-X control, security vulnerability detection method, and immunization method are provided to recognize the distribution of an active-X control. CONSTITUTION: A checking object URL is obtained by performing a search engine query in a distribution site identification server(S202,S203). The checking object URL is accessed through the implementation of a web browser(S204,S205). It is determined whether to use active-X control in the accessed detection target(S206). The information of the corresponding active-x control is collected and recorded in the distribution present condition DB(S208).