Feeds

Windows Firewall exploit overhyped

Nothing to see here, please move along

Gartner critical capabilities for enterprise endpoint backup

The release of an exploit that means a hacker, who happens to be on the same local area network, can knock over Windows Firewall on machines running XP has created a lot of publicity, despite being not much of a threat. By using the exploit, an attacker could disable Windows Firewall on a fully patched machine running Internet Connection Service (ICS).

ICS allows small businesses or home users to share an internet connection through a machine which acts as a hub. But with the advent of cheap routers few people need to use the service which, as nCircle points out, can be disabled quite easily without turning off Windows Firewall.

Turning off the firewalls of users removes barriers to potential attacks and the exploit would be more noteworthy if it worked remotely, which it doesn't. Attackers need to attack from inside the same LAN as potential victims, which greatly reduces the potential for mischief even when attacking basic home or small business networks.

As Secunia advises, the best approach to dealing with the problem (such as it is) is to find another way of sharing an internet connection.

Now, if you'll excuse me, I'm off to investigate reports that cows have stopped producing milk in Somerset as the result of an IE exploit or possibly generated the influx of whiskey-loving Romanian witches. ®

5 things you didn’t know about cloud backup

More from The Register

next story
Raspberry Pi B+: PHWOAR, get a load of those pins
More USB ports than your laptop? You'd better believe it...
So, Apple won't sell cheap kit? Prepare the iOS garden wall WRECKING BALL
It can throw the low cost race if it looks to the cloud
Reg man looks through a Glass, darkly: Google's toy ploy or killer tech specs?
Tip: Put the shades on and you'll look less of a spanner
Apple promises to lift Curse of the Drained iPhone 5 Battery
Have you tried turning it off and...? Never mind, here's a replacement
Now that's FIRE WIRE: HP recalls 6 MILLION burn-risk laptop cables
Right in the middle of Burning Mains Man week
Apple's iWatch? They cannae do it ... they don't have the POWER
Analyst predicts fanbois will have to wait until next year
Super Cali signs a kill-switch, campaigners say it's atrocious
Remote-death button bad news for crooks, protesters – and great news for hackers?
prev story

Whitepapers

A new approach to endpoint data protection
What is the best way to ensure comprehensive visibility, management, and control of information on both company-owned and employee-owned devices?
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.