THE OFFICIAL BLOG OF THE SBS "DIVA"

How to fix a potential security issue in QuickBooks 2007, 2008, and 2009. - THE OFFICIAL BLOG OF THE SBS "DIVA":
http://msmvps.com/blogs/bradley/archive/2009/11/01/how-to-fix-a-potential-security-issue-in-quickbooks-2007-2008-and-2009.aspx

So... what do you do about this for older versions of Quickbooks that won't get patched? 

1. Urge your client base to upgrade to start with as they won't be patching older versions of the ActiveX.

2.  Uninstall older versions

3.  If you don't want to uninstall older versions, as uninstalling 10 years of Quickbooks is a bit daunting, the you can set a Killbit

4.  To set it via a reg key, see the download here: 
http://msmvps.com/media/p/1736945.aspx

Or you can copy this text and put it in a reg file (if you aren't comfy downloading a file from a blog site)

=============copy from here=================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{596801D8-2C9D-4627-9C67-195CB81B655A}]
"Compatibility Flags"=dword:00000400

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{03C3A013-02F2-4e56-87A8-B74A7C5DC75B}]
"Compatibility Flags?=dword:00000400
=============to here=======================

5. To set it via group policy see this:
The GPOGUY-- Group Policy Blog: ActiveX Killbits and Group Policy:
http://sdmsoftware.com/blog/2009/07/activex_killbits_and_group_pol.html

What you are doing is setting a killbit like here: How to stop an ActiveX control from running in Internet Explorer:
http://support.microsoft.com/kb/240797

If you need to undo this, then go into the registry and remove the killbits you set.