You are here: silicon.com > Software > Security Strategy

Security Strategy

Microsoft: Yes, there's a flaw in Windows wi-fi...

... but we probably won't fix it until 2007

Tags: flaw, windows, microsoft

By Tom Espiner

Published: 19 January 2006 11:30 GMT

Microsoft has admitted there is a security flaw in the way Windows handles wireless connections but the company has said it may not fix the problem until its next Service Pack is released.

The flaw, within a Windows feature that automatically searches for a wi-fi network to connect to, was made public last Saturday by security researcher Mark Loveless at hacker conference ShmooCon. It can be used by a hacker to gain access to files on a victim's laptop, Loveless claimed.

Microsoft said it had finished investigating this claim and had found there is scope for users to be compromised. However, it does not plan to rush out a fix.

Microsoft said in a statement: "Due to the design of this feature, the most appropriate method for adjusting the default behaviour is in a future Service Pack or update rollup."

On Tuesday, the software behemoth revealed it was not planning to release the next Service Pack for XP, called XP SP3, until the second half of 2007.

Microsoft recommended on Wednesday that customers enable a firewall, get software updates, and install antivirus software. Customers who believe they may have been affected can contact Microsoft Product Support Services via its website.

Tom Espiner writes for ZDNet UK

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

  • Jobs
Desktop Support 10 Month Contract East London/Essex

Technologies include: Windows XP MS office and applications Active directory Windows 2003 Hardware break/ fix Ideally candidates would have some 3rd ...

IT Analyst

Alternatively you can request a pack via e-mail: recruitment@kettering.gov.uk or you can apply online at www.kettering.gov.uk. Excellent working ...

IT Support Engineer

To apply online please go to www.farn-ct.ac.uk or call our 24 hour recruitment line on 01252 407020 quoting the post reference to receive an ...

CIO50 2008
The silicon.com CIO50 2008 profiles the most influential and innovative tech chiefs in the UK across all industries and organisation size, from the biggest FTSE100 companies to high growth dot-com start ups and the public sector. The list was voted on by the UK CIO community and a panel of experts. Find out more in our latest special report.





Quick Sitemap Links: