Windows Firewall Flaw Hides Open Ports

Microsoft earlier this week confirmed a flaw exists in the way the user interface for its Windows Firewall handles bad entries in the Windows Registry, but said the problem was not a security vulnerability.

According to the advisory, an exception could be created that would open a hole in the Windows Firewall, allowing an attacker access to the computer. Administrator privileges are required in order to access the necessary section of the Windows Registry.

The flaw would also mean a user would be unaware of an open port. Microsoft has released a fix for the issue, which is downloadable from its Web site.

Firewall programs like the one included in Windows XP SP2 are intended to block incoming data unless the user specifically allows it. When exceptions are made for various types of incoming traffic, the user interface alerts the user to those open ports.

Microsoft says that it is more likely that attackers who have already compromised a user's system could exploit this flaw rather than the system creating the vulnerability on its own.

The issue affects Windows 2000 and Windows XP, including Service Pack 2.

"Microsoft plans to include an update to address this concern as part of a future service pack on the affected supported platforms," the advisory read.

23 Responses to Windows Firewall Flaw Hides Open Ports

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.