Windows XP Service Pack 2 promises to raise the security bar for the sometimes beleaguered operating system. Unfortunately, one of the new features could be spoofed so that it reports misleading information about system security, or worse, lets a malicious program watch for an opportunity to do damage without being detected. The feature is the Windows Security Center ( Figure 1 ), which displays the status of the key elements of your defenses: Firewall, Updates, and Antivirus. If your firewall has been disabled, or your antivirus is out of date, that news will display here. The information is stored in an internal database managed by the Windows Management Instrumentation (WMI) subsystem built into Windows.

Based on an anonymous tip, we looked into the WMI and the Windows Security Center's use of it, and found that it may not only be a security hole, but a crater. Due to the nature of WMI, it could potentially allow attackers to spoof the state of security on a user's system while accessing data, infecting the system, or turning the PC into a zombie for spam or other purposes.
Full Story...


Source : PCMag

Damn! Another m$ hit

(in reply to SiliconFreak)

come onnnnnn...You are talking like someone who just got his first PC with Windows installed......we both know that You (and all of us) are already used to those M$'s gameplays...they just cant hit the target right away...to much wind or what?

SP13 Rullzzzzzzzzzzzzzz

(in reply to emperor)

quick another update plz

(in reply to SiliconFreak)

hehe

(in reply to S33K3R)

If we didn't have firewalls and antivirus/spyware programs installed, I think the average PC would only be online about 20 minutes before it was so infected, it probably wouldn't even boot.

(in reply to emperor)