I am trying to understand the security risks associated with IE binary and script behaviors. From what I understand binary behaviors are run with the same permissions as the local user (can I have verification on this?). In my environment because users have local administrator permissions (don’t ask–I am working on this) binary behaviors in the Internet zone are potentially a very dangerous thing.
So I disabled Binary and Script Behaviors in the internet zone via group policy. However, this caused a somewhat obscure internet website to stop working.
I need to figure out what I should do with this binary behaviors setting. What is the prevalence of binary behaviors on the internet? Am I right in thinking that they are a dated technology? Am I doing the right thing by disabling them on the Internet zone? Why are they enabled by default in IE8?