Support, News and Updates


WinFax PRO Security Update for ActiveX control

An ActiveX security flaw has been detected in the WinFax PRO Viewer Control. This bulletin applies to the following versions of WinFax:

  • WinFax PRO 8.0x
  • WinFax PRO 9.0x
  • WinFax PRO 10.0x
  • TalkWorks PRO 2.0x
  • TalkWorks PRO 3.0
  • WinFax Basic Edition (all versions)
  • TalkWorks Basic Edition (all versions)
  • Delrina Fax (French release, version 8.0x and above)

More details on this security flaw by clicking here

Symantec has released this official Security Bulletin for WinFax PRO, technical details can be found at Symantec’s Web site

If you use a Norton product for security, such as Norton 360 and Norton Internet Security 2009, this threat is detected with current definitions. Other security software from other vendors  may also detect this threat.

Regardless of the type of security you are using, We recommend setting the KillBit for this specific ActiveX control to always prevent it from activating. Setting this KillBit does NOT effect the normal operation of WinFax PRO. 

This is recommended if you have or do not have an installation of WinFax PRO.

If you have prior experience in setting a KillBit in the Windows registry, the CSLID for the WinFax PRO Viewer Control is {C05A1FBC-1413-11D1-B05F-00805F4945F6}

or, you can use our tool to do this for you, download our Free version of WinFax Tools.  Click “Fix Security DLL” button and the KillBit will be set automatically.

UPDATE: In a Windows XP update that was released February 9th, 2010, this security flaw was finally addressed. The actual update released by Microsoft is: Microsoft Security Bulletin MS10-008 – Critical Cumulative Security Update of ActiveX Kill Bits (978262).   If you have already downloaded this security update for Windows XP, then your system will already have the necessary ActiveX Kill bits set for the WinFax PRO ActiveX control.  You can still download WinFax Tools and confirm if the ActiveX kill bit was applied properly by this Windows XP Update. If your system has the Killbit set, the WinFax Tools program will indicate it has already been applied.