Shark Bait

Knowledge Centers

Operating Systems

Networking & Internet

Mobile & Wireless

Security

Storage

Business Intelligence

Servers & Data Center

Computerworld Reports

Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.

Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Microsoft fixes 'critical' XP firewall issue

File and printer sharing problem could make files visible on the Internet

By Joris Evers Today’s Top Stories

or Other Security Stories

December 16, 2004 (IDG News Service) -- Microsoft Corp. has quietly released an update to Windows XP to fix a potentially serious configuration problem in the firewall that ships as part of Windows XP Service Pack 2 (SP2).

Users who installed SP2 on their Windows XP machines and also have file and printer sharing enabled may have been sharing their files and printers with the entire Internet, according to Microsoft.

By default, file and printer sharing makes changes to the SP2 firewall to give computers on the "local network" access to shared resources. However, the definition of that local network depends on the Internet service provider (ISP). In some cases, especially with dial-up ISPs, it meant the entire Internet, according to Microsoft.

"In the default configuration of Windows XP SP2, that (firewall) setting was probably a bit wider than it should have been," said Gary Schare, director of product management for Windows. "This update narrows the scope of what defines the local network."

Still, even with the update, a local network could extend beyond what users may consider a local network, Schare said. To cordon off a network and prevent unwanted access, users should place an additional firewall in front of the network, he said. For example, they could use a router with a firewall.

"If you're turning on file and printer sharing, we want you to be aware that you're sharing your files on the network, and if you are connected to the Internet, that network may be larger than you think," Schare said.

Microsoft first discussed the firewall issue in an article on its Web site in September. A "critical" update for Windows XP SP2 was released on Tuesday. However, though issued on the same day, the update was not part of Microsoft's monthly security updates. That's because security updates are only for software vulnerabilities, according to Schare.

"A vulnerability is a software bug that needs to be repaired to avoid a security issue. This is a configuration setting that shipped with Windows XP that was not optimal, but that is not classified as a security vulnerability," he said.

The update to Windows XP SP2 has been pushed out to users with the Automatic Updates feature in Windows. More information is available on Microsoft's Web site at:
http://support.microsoft.com/kb/886185

Reprinted with permission from

For more news from IDG visit IDG.net
Story copyright 2006 International Data Group. All rights reserved.

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

"This company's infrastructure group is running a disaster recovery exercise with a reluctant participant: an IT manager who's notorious as..." Read more...

"It's IT Blogwatch: in which Mozilla's Firefox Web browser continues to gain market share, smashing records as it does so...." Read more...

Read more Security posts or See all Blogs

	Microsoft promises four patches next week
	Google gives away home-cooked Web application security scanner
	Storm botnet stages Fourth of July attacks
	More top stories...

	Microsoft trumpets security additions in upcoming IE8
	Apple cuts price of high-end SSD MacBook Air by $500
	Ultrathin showdown: Apple MacBook Air vs. Lenovo ThinkPad X300 vs. Toshiba Portege R500

This old laptop: Revitalizing an aging notebook on the cheap

All it takes is a couple hours and about $125 to breathe new life into an old laptop. Here's how.

Bill Gates moves on

Is Microsoft's Golden Age over? What are Gates' most memorable quotes? Find out in Computerworld's complete coverage of the end of the Bill Gates era at Microsoft.

Five things you should never tell your boss

There are some things your CIO definitely doesn't want to hear. Also don't miss the flipside, Five things you should always tell your boss.

Hands-On: Firefox 3 fixes what's broke and keeps what's right

With its latest version, Mozilla's browser continues to raise the bar for what Web browsers should be.

Windows Vista A to Z

Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS.

IT Careers 2010

Four years from now, the IT field will be a vastly different place. Will you be ready?

All Zones
Application Performance Zone
Business Continuity Zone
Data Center Management Zone
Enterprise-Class Security Zone
The File Data Management Zone
Grid Computing on Windows Zone
Security Management Zone
ITIL Best Practices Zone
The SAS Zone
Storage Virtualization Zone
Business Intelligence and Analytics Zone

See your link here

Why SaaS is Vital to Email and Web Security

Why SaaS is Vital to Email and Web Security
Download this webcast, free, compilments of Webroot Software

Go to the webcast

Computerworld Executive Bulletin: Building a Robust Antivirus Defense

Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs.
(Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more.

Download this executive briefing

Eliminate SPAM, Gain Productivity

Get this white paper now!
(Source: MessageLabs) Learn all about the dangers and the costs of spam in all its forms - from stock-touting to spreadsheet. Also, understand the drawbacks of traditional hardware- and software-based defenses - and the unique benefits of MessageLabs multi-layered, managed Anti-Spam solution; as illustrated by a real-world case study where MessageLabs stopped spam cold.

Download this white paper

White Papers

Read up on the latest ideas and technologies from companies that sell hardware, software and services.

	Deploying Virtualized NetWare on Linux Whitepaper
	Toward More Flexible, Next-Generation Collaboration Solutions
	Driving Business Success Through Workgroup Choice and Flexibility

View more whitepapers

Security Management Zone
Security management is the process of developing a comprehensive data protection plan. It takes into account all potential threats, the existing network environment, the future needs of the organization, and lays out a multi-tiered blueprint to integrate the security technology needed to combat these threats. CDW can help keep your network and data secure.
Visit the CDW Security Management Zone now

See All Zones

Fired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT – the good, the bad, and the rest of the weird stuff you deal with every day.

New baits

"Security Directions" virtual trade show

2008's Code-Red Security Issues for Protecting the Enterprise

Webcasts, white papers, demos, and more. Presented in a unique 3-d environment.

Enter our show right now!

Click here to enter more

In Security
Security's important, and risk must be addressed, right? Sure, but watch for four signs your policies go a bit overboard.

Click here to read the latest column by Jon Espenschied

	Finance
	Security
	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10