Feeds

Windows Firewall exploit overhyped

Nothing to see here, please move along

Secure remote control for conventional and virtual desktops

The release of an exploit that means a hacker, who happens to be on the same local area network, can knock over Windows Firewall on machines running XP has created a lot of publicity, despite being not much of a threat. By using the exploit, an attacker could disable Windows Firewall on a fully patched machine running Internet Connection Service (ICS).

ICS allows small businesses or home users to share an internet connection through a machine which acts as a hub. But with the advent of cheap routers few people need to use the service which, as nCircle points out, can be disabled quite easily without turning off Windows Firewall.

Turning off the firewalls of users removes barriers to potential attacks and the exploit would be more noteworthy if it worked remotely, which it doesn't. Attackers need to attack from inside the same LAN as potential victims, which greatly reduces the potential for mischief even when attacking basic home or small business networks.

As Secunia advises, the best approach to dealing with the problem (such as it is) is to find another way of sharing an internet connection.

Now, if you'll excuse me, I'm off to investigate reports that cows have stopped producing milk in Somerset as the result of an IE exploit or possibly generated the influx of whiskey-loving Romanian witches. ®

The essential guide to IT transformation

More from The Register

next story
So, Apple won't sell cheap kit? Prepare the iOS garden wall WRECKING BALL
It can throw the low cost race if it looks to the cloud
Samsung Gear S: Quick, LAUNCH IT – before Apple straps on iWatch
Full specs for wrist-mounted device here ... but who'll buy it?
Apple promises to lift Curse of the Drained iPhone 5 Battery
Have you tried turning it off and...? Never mind, here's a replacement
Now that's FIRE WIRE: HP recalls 6 MILLION burn-risk laptop cables
Right in the middle of Burning Mains Man week
HUGE iPAD? Maybe. HUGE ADVERTS? That's for SURE
Noo! Hand not big enough! Don't look at meee!
AMD unveils 'single purpose' graphics card for PC gamers and NO ONE else
Chip maker claims the Radeon R9 285 is 'best in its class'
prev story

Whitepapers

5 things you didn’t know about cloud backup
IT departments are embracing cloud backup, but there’s a lot you need to know before choosing a service provider. Learn all the critical things you need to know.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Backing up Big Data
Solving backup challenges and “protect everything from everywhere,” as we move into the era of big data management and the adoption of BYOD.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?