Microsoft now lets you disable insecure JScript in Internet Explorer

“Internet Explorer?” I hear you say. Yes, it’s still in widespread use especially in enterprise environments where it’s used to access legacy applications. But that brings a number of risks. Microsoft are attempting to mitigate one risk, insecure Jscript, with this new feature. However, I can’t see many people firing up the registry editor themselves so this is probably one for the desktop support team to get to grips with…:

[…] Additionally, before toggling off IE JScript execution on Windows 8, Windows 8.1, and Windows 10 versions 1507 up to 1709, it must be enabled using an Internet feature control key — instructions on how to configure such a key are available here.

To manually toggle off IE JScript execution in Internet Explorer for Internet Zone and Restricted Sites Zone, you need to go through the following procedure:

  1. Click Start, click Run, type regedt32 or regedit, and then click Ok.
  2. To disable JScript execution in Internet Zone, locate the following registry subkey in Registry Editor:

    HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsZones3140D

    To disable JScript execution in Restricted Sites Zone, locate the following registry subkey in Registry Editor:

    HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsZones4140D

  3. Right-click the appropriate registry subkey, and then click Modify.
  4. In the Edit DWORD (32-bit) Value dialog box, type 3.
  5. Click OK, and then restart Internet Explorer.

Original article here