Become a fan of Slashdot on Facebook


Forgot your password?
Slashdot Deals: Deal of the Day - Pay What You Want for the Learn to Code Bundle, includes AngularJS, Python, HTML5, Ruby, and more. ×

Journal twitter's Journal: WPAD threatens Vista and all Windows Versions.

The Register is reporting a serious Windows bug that was supposed to have been fixed years ago.

the flaw affects every version of Windows including Vista and is actually the continuation of an old vulnerability that Microsoft supposedly fixed years ago.

The bug, according to Symantec's DeepSight threat notification service, resides in a feature known as Web Proxy Autodiscovery (WPAD), which helps IT administrators automate the configuration of proxy settings in Internet Explorer and other web browsers. The vulnerability can be "widely exploited" to "intercept web sessions, direct browsers to malicious proxies, and effectively gain control over unsuspecting users' web traffic,"

Microsoft appears to have released a patch for the vulnerability in 1999. But the patch only protected domain names ending in .com

This discussion was created by twitter (104583) for Friends only, but now has been archived. No new comments can be posted.

WPAD threatens Vista and all Windows Versions.

Comments Filter:

We're here to give you a computer, not a religion. - attributed to Bob Pariseau, at the introduction of the Amiga