A wave of bugs in the plug-in technology used by Microsoft’s Internet Explorer (IE) browser has some security experts, including those at US-CERT, recommending that users disable all ActiveX controls.