By Tom Espiner, 19 January 2006 11:30
NEWS
Microsoft has admitted there is a security flaw in the way Windows handles wireless connections but the company has said it may not fix the problem until its next Service Pack is released.
The flaw, within a Windows feature that automatically searches for a wi-fi network to connect to, was made public last Saturday by security researcher Mark Loveless at hacker conference ShmooCon. It can be used by a hacker to gain access to files on a victim's laptop, Loveless claimed.
Microsoft said it had finished investigating this claim and had found there is scope for users to be compromised. However, it does not plan to rush out a fix.
Microsoft said in a statement: "Due to the design of this feature, the most appropriate method for adjusting the default behaviour is in a future Service Pack or update rollup."
On Tuesday, the software behemoth revealed it was not planning to release the next Service Pack for XP, called XP SP3, until the second half of 2007.
Microsoft recommended on Wednesday that customers enable a firewall, get software updates, and install antivirus software. Customers who believe they may have been affected can contact Microsoft Product Support Services via its website.
Tom Espiner writes for ZDNet UK
Comments
There are 3 comments. Join the discussion
1. anonymous
Wow, we have to wait for about a year ansd a half for a fix.
Who say's Microsoft can't respond quickly to problems?
2. Improbus Liber
Kind of makes you think of moving to another operating system, doesn't it?
3. anonymous
they try to show themselves as security-caring and a moment later something like this... laugh or cry?