方法四：使用SACL完全禁用OLEDB32.dll

　　·对于Windows 2000、Windows XP和Windows Server 2003，运行如下命令：

　　cacls "Program Files\Common Files\System\Ole DB\oledb32.dll"/E/P everyone:N

　　·对于Windows XP Professional x64 Edition、Windows Server 2003 x64 Edition和Windows Server 2003 for Itanium-based Systems，运行如下命令：

　　cacls "Program Files\Common Files\System\Ole DB\oledb32.dll"/E/P everyone:N

　　cacls "Program Files (x86)\Common Files\System\Ole DB\oledb32.dll"/E/P everyone:N

　　·对于 Windows Vista和Windows Server 2008 for 32-bit Systems，运行如下命令：

　　takeown/f "Program Files\Common Files\System\Ole DB\oledb32.dll"

　　icacls "Program Files\Common Files\System\Ole DB\oledb32.dll"/save %TEMP%\oledb32.32.dll.TXT

　　icacls "Program Files\Common Files\System\Ole DB\oledb32.dll"/deny everyone:(F)

　　·对于Windows Vista x64 Edition、Windows Server 2008 for x64-based Systems和Windows Server 2008 for Itanium-based Systems，运行如下命令：

　　takeown/f "Program Files\Common Files\System\Ole DB\oledb32.dll"

　　icacls "Program Files\Common Files\System\Ole DB\oledb32.dll"/save %TEMP%\oledb32.32.dll.TXT

　　icacls "Program Files\Common Files\System\Ole DB\oledb32.dll"/deny everyone:(F)

　　takeown/f "Program Files (x86)\Common Files\System\Ole DB\oledb32.dll"

　　icacls "Program Files (x86)\Common Files\System\Ole DB\oledb32.dll"/save %TEMP%\oledb32.64.dll.TXT

　　icacls "Program Files (x86)\Common Files\System\Ole DB\oledb32.dll"/deny everyone:(F)

　　点击查看微软安全通报