New Windows Attack Can Disable Firewall 273
BobB writes to tell us NetworkWorld is reporting that new code released on Sunday could allow a fully patched Windows XP PC's personal firewall to be disabled via a malicious data packet. The exploit depends on the use of Microsoft's Internet Connection Service. From the article: "The attacker could send a malicious data packet to another PC using ICS that would cause the service to terminate. Because this service is connected to the Windows firewall, this packet would also cause the firewall to stop working, said Tyler Reguly, a research engineer at nCircle Network Security Inc."
Not that big a deal, but still. (Score:5, Insightful)
What can you trust? (Score:4, Insightful)
Re:What can you trust? (Score:5, Insightful)
A few things:
Re:Obvious (Score:1, Insightful)
Re:How do you know you've never gotten a virus? (Score:1, Insightful)
HackerDefender (http://hxdef.org/) is just begging to disagree with you there. Quite a popular rootkit a few years back where I work, where there were a bunch of Windows 2000 machines which got cracked. The only reason we knew there was anything wrong with them was:
a) We were warned of increasing levels of network traffic
b) When it came time to install SP4 on them, it wouldn't go on (due to the rootkit blocking all access to anything called "ftp.exe", thus the SP couldn't install correctly)
However, had this been a home machine then almost certainly nothing would have been detectable, since there's no one to monitor traffic levels, and I don't think most users would read too much into it if a patch failed.
Re:Obvious (Score:3, Insightful)
http://www.tomsnetworking.com/lans_routers/charts
You set up a p2p like bittorrent that is willing to use a lot of simulataneous connections and it floods your router and your connection drops.
Of course, it does sound like a lot of routers(1 a month?) to go through so if he's returning a lot of dead routers, a possible power problem in the home is possible.
Suddenly noone is using wireless? (Score:3, Insightful)
Re:Obvious (Score:3, Insightful)
No, but my girlfriend nearly did when I started laying bright yellow cat5 cable in the house...