Welcome to WebmasterWorld Guest from 220.127.116.11
Forum Moderators: bill
A Microsoft Windows feature that allows PCs to automatically search for Wi-Fi connections could be exploited by hackers. The Wi-Fi feature in question is part of both Windows XP and 2000 and the flaw was reported at a hacker conference over the weekend.
The site ( which I do not link to due to possible issues with the TOS ) is not a "hacker conference" heh heh "panic stations everyone" ~~:0"dive ..dive! " ..but is a clearing house for various things ..specialising in security and vulnerabilities reporting ..
if you want sticky me ..for the URL ..Hanu read your
one cannot be aware of what is said at all the meetings( there aren't many though ) ..there was one ( security meeting )this last weekend ( maybe )in Korea ..maybe someone from the area was there and maybe can say if this was discussed? ..then again the Korean meeting may not have happened yet ..
If so, anybody know if there have been any confliction issues with those Intel M chips (the ones with the inbuilt wireless cards?)
I've only recently been having connection issues with my laptop and my AP... only when WPA or WEP is enabled on the AP though - been trying to discover whether a Windows Update was to blame.
If anybody has experienced similar problems and knows of a way to fix it, that would be great :)
because MS does not allow to upgrade to SP2 for anyone who has invalid key - and that includes many, many PCs that came with volume licensed XP, OEM installations, partner keys that were on the internet and were invalidated by MS, etc. etc. i.e. in a world outside "US businesses" it is pretty much anyone who didn't purchase XP directly from MS.
The flaw is that a WiFi networking in Windows will "remember" the last WiFi network it connected to.
Next time when there is no WiFi network to connect to, it will use the previous WiFi network name, and starts broadcasting it.
(Technically not exact, but trying to keep it simple.)
With that knowledge, and knowing some default settings, an other machine can connect to the target WiFi machine.
Fix? Turn off by default your WiFi network card when not in use.
Any proper OEM furnishes a valid license key. I've bought many personal PCs and never had a problem. The only people with a bogus license key either bought their PC from a sketchy vendor or knowingly installed bogus Windows. If someone's illegal Windows blows up because of a virus, I don't have a lot of sympathy. The problem, I suppose, is that some worms and trojans might use the large number of illegal installations to spread and/or attack other machines; this would create untold havoc and bad PR for Microsoft, since the vulnerability would be presented in the press as a "Windows flaw", not a "flaw affecting illegal Windows copies".
The guy on the street corner with an overcoat full of watches isn't selling genuine Rolexes, and the spammer who emails you offering to download Windows for $50 isn't selling the real thing either.