Microsoft details network hack in Windows

Attack could be used to divert user's Web traffic through a malicious proxy server.

By Jeremy Kirk

March 26, 2007 12:00 PM ET

Comments

IDG News Service -

Microsoft Corp. is warning of an attack that could be used to divert someone's Web traffic through a malicious proxy server.

Applications such as Internet Explorer use the Web Proxy Automatic Discovery (WPAD) protocol to find a file that enables a browser to configure its proxy settings. However, it's possible to plant a configuration file that would route traffic through a malicious proxy, the company said.

A malicious WPAD.dat file could be placed in the Domain Name System (DNS) or the Windows Internet Naming Service (WINS), Microsoft said. The client application looks in DNS or WINS to resolve the name of the hosting that has the proxy configuration file.

Once the bad file is there, WPAD clients "may be able to route their Internet traffic through a malicious proxy server," Microsoft said.

Microsoft details on its support site how administrators can configure DNS and WINS on their servers to help prevent what it calls "malicious registrations" of WPAD files. The fix is for Windows Server 2003 and Windows 2000 Service Pack 4.

Microsoft staffers were not immediately available to comment.

Reprinted with permission from

IDG.net
Story copyright 2009 International Data Group. All rights reserved.

Comment Recommend Digg Twitter ShareThis

Email Print Send Feedback Reprints

Jump to comments

Microsoft

Additional Resources

WHITE PAPER

Do You Know the 7 Steps to Successful Data Migration?

Approximately 60 percent of data migration projects overrun time or budget, while some fail completely. Download this white paper, "Enhancing Your Chance for Successful Data Migration," to learn the critical steps you need to take to execute a data migration project with minimum cost and risk to your business.

WHITE PAPER

Total Cost of Ownership of Server Computing Vs. PCs

Read the Gartner research note to learn why the TCO of a server-based computing deployment used to deliver all applications to users is around 50% lower than that of an unmanaged desktop deployment.

WHITE PAPER

IDC White Paper: Linux in a Global Recession

Economic downturns have a tendency to accelerate emerging technologies, boost the adoption of effective solutions, and punish solutions that are not cost competitive or that are out of synch with industry trends. This IDC White Paper presents the results of an IDC survey of 330 companies in Western Europe, Asia/Pacific and the Americas that measures the receptiveness to Linux and takes into consideration changing views driven by the disruptive economic environment that businesses face today.

What People Are Saying

6 comments | Add new

See all comments (6) | Add new

White Papers & Webcasts

Why Email Fails: Dell MessageOne Survey of Email Outages
Download Now

Extending Client Refresh - 11 Steps to Maximize Savings
Register Now!

Tackling the Top Five Network Access Control Challenges
Computerworld and Juniper invite you to download this white paper.

Lower the Cost and Complexity of a Mobile Workforce through Automation
Download This Resource Now!

How to Secure and Accelerate Your Oracle Applications
Learn about the escalating application performance and security challenges facing corporations, today!

Managing Mobility: Improve Data Security, Compliance and Manageability
Download This Resource Now!

Enterprise Application Delivery: No User Left Behind
Gain the ability to deliver applications to all users, using any device, across any network.

Consolidate Your Servers and Storage to Lower Costs with Oracle Database 11g
Register for this webcast!

Accelerate SSL Encrypted Applications
Gain complete visibility into SSL application sessions, making it easy to apply appropriate acceleration and security controls to all SSL traffic.

The Commercialization of ITIL: Lessons Learned
Register for this event today!

All White Papers | All Webcasts