HighMicrosoft Windows Knowledge Base Article 978262 update is not installed on the system, which could allow an attacker to exploit the following vulnerability:
The Microsoft Data Analyzer ActiveX Control could allow a remote attacker to execute arbitrary code on a system. By persuading a victim to visit a malicious Web site that passes specially-crafted arguments to an insecure method, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim or cause the application to crash.
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS10-008. See References.
IBM Internet Security Systems X-Force Database
Microsoft Data Analyzer ActiveX Control code execution
http://xforce.iss.net/xforce/xfdb/55915
Microsoft Security Bulletin MS10-008
Cumulative Security Update of ActiveX Kill Bits (978262)
http://www.microsoft.com/technet/security/bulletin/ms10-008.mspx
ISS X-Force
Microsoft Windows Knowledge Base Article 978262 update is not installed
http://www.iss.net/security_center/static/55917.php
CVE CVE-2010-0252
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0252
