Assuming that Internet explorer is block on a specific server (cannot be used) and Microsoft office isn’t installed on the server can we ignore security patches that are related to “Kill-Bit” ?
From the Kill-Bit FAQ:
The Kill-Bit is respected in Internet Explorer (all zones) and also in Microsoft Office scenarios where objects are embedded within documents. The Kill-Bit should also be effective by default in any other application or platform that hosts the IE browser’s rendering engine (MSHTML). A notable exception are HTAs – with an HTA it is already possible to load unsafe controls and run arbitrary code. HTAs are an unsafe file type.