New research finds Vista firewall can be subverted
By Rene Millman,
The firewall that comes as part of Windows Vista can easily be subverted by hackers, according to research carried out by IT security company Symantec.
One of the company's security response team members Orlando Padilla wrote in a report that the Windows Vista firewall is configured to disallow all network communications unless the user clicks the unblock button.
"Unfortunately, the unblock function can be accessed with the same set of privileges as those of the restricted user," said Padilla. "This configuration of privileges creates a point of vulnerability that undermines the effectiveness of the firewall's policy in Windows Vista."
Padilla added that malicious code can automate the unblock process by simply sending a message to the firewall pop-up dialog box via the SendMessage application programming interface (API) call.
Symantec said in another report that while Microsoft had fixed a number of security bugs in its new operating system, attackers have largely moved away from exploiting these flaws in core operating system components.
"Attackers have moved to attack third-party applications, such as Office suites, web browsers, and other common software," said Oliver Friedrichs, director of emerging technologies in Symantec Security Response. "The defence mechanisms that are intended to make Windows more secure are also, in many cases, not extended to third-party applications. As a result, software that isn't developed to leverage Windows Vista's security features remains exposed."
He said that today's malicious code is quite capable of surviving on Windows Vista with no modification. "This demonstrates that malicious code authors will easily adapt to Microsoft's new operating system," he warned.
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
What is your password worth?
Would you be tempted to sell off company passwords for a fee? If not, seems like you're in the minority, acccording to research.
- Macs under attack?
- Intel: security inside
- Are you spending too much on IT security?
- Does the government want to snoop on your data?
- Eurocrats versus the cyber criminals
- The truth about spam
- Google and privacy: What’s the problem?
- Q&A: Symantec’s CISO on the source code hack
- RSA: Back from the breach?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Apple iPad 3 vs iPad 2 head-to-head review
- Hutchison denies it will pull plug on Three UK
- EMC World 2012: Tucci declares Documentum is here to stay
- ICO: Fines for cookie law breakers
- EMC World 2012: EMC talks up cloud, security and big data
- Dell PowerEdge R820 review
- Sony Vaio T13 Ultrabook review: First look
- BlackBerry 7 OS certified to carry 'Restricted' UK government information
- Facebook floatation marred by Nasdaq glitch
- CIO: Career is over?
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
