Windows XP Fault Strike Firewall

A fresh Windows fault has been detected by security investigators that could let cyber-terrorists break the inbuilt firewall. By transferring distorted DNS bundles to exposed computers, cyber-terrorists could incapacitate and ultimately dodge the firewall of the operating system. Machines with Windows XP having their Internet Connection Sharing (ICS) facility switched on are hit by the strike.

Internet Connection Sharing is a facility acquired from the budding phase of networking when hardware routers were uncommon and costly. The facility permits one PC to share one Net connection amongst multiple internal networked computers. ICS initiates an internal DNS and DHCP server, to provide the computer's IP addresses and domain name data to the internal network.
Since ICS is linked to the Windows security system, malevolent data bundles dispatched by hackers would disable the firewall, stated nCircle Network Security Inc's, research engineer Tyler Reguly, in a blog regarding the matter.

Just by incapacitating the Windows Firewall, a hacker could give access to new-fangled strikes; however several aspects make such strike situation impossible, Reguly declared.

Primarily, the computer has to be operating an Internet Connection Service by Windows, allowing individuals to share their Internet connection. This facility is not authorized by default and has been outmoded mainly due to the countless substandard routers currently on sale.

Next, the hacker would have to be a part of the local area network of the victim PC to execute a successful strike.

Consumers can evade strikes by incapacitating ICS. However, this will break the shared Net link too. A simpler answer could be that ICS clients just shift their networks to a router or Network Address Translation gadget. Presently, they are very affordable and often offer greater defense and a smoother running of your LAN.

Windows XP seems to be the lone victim of this strike, as it was ineffectively tried on the server of Windows 2003.

Microsoft's preliminary inquiry into the issue "has resolved that the matter only affects end users of Windows XP," quoted the company's public relations bureau in its report. "Microsoft is unaware of strikes trying to exploit the rumored susceptibility or any client now."

Related article: Windows spyware In Focus

» SPAMfighter News - 11/3/2006