only locally exploitable (Score 1)

Once again the media has managed to throw the insecurity of microsoft slightly out of wack. Please keep in mind that the windows firewall can only be disabled by another process/application LOCALLY. The command(s) {Three lines of vbscript code to be exact} can not be run from a remote console (including from another user with non-administrative privledges on the same computer.) With this in mind... with the default notification of "blah blah.exe has turned off the firewall for :port" is more of a assistance, then a hassle or security flaw.