The Active Network
ActiveWin Anonymous | Create a User | Reviews | News | Forums | Advertise | VBA in Excel | Users Online: 0  
 

neowin.net

Amazon.com

  *  

  Microsoft details network hack in Windows
Time: 00:38 EST/05:38 GMT | News Source: InfoWorld | Posted By: Kenneth van Surksum

Microsoft Corp. is warning of an attack that could be used to divert someone's Web traffic through a malicious proxy server.

Applications such as Internet Explorer use the Web Proxy Automatic Discovery (WPAD) protocol to find a file that enables a browser to configure its proxy settings. However, it's possible to plant a configuration file that would route traffic through a malicious proxy, the company said.

A malicious WPAD.dat file could be placed in the Domain Name System (DNS) or the Windows Internet Naming Service (WINS), Microsoft said. The client application looks in DNS or WINS to resolve the name of the hosting that has the proxy configuration file.

Once the bad file is there, WPAD clients "may be able to route their Internet traffic through a malicious proxy server," Microsoft said.

Read Only Comments
Return to News
  Displaying 0 comments
  This is an archived static copy of ActiveWin.com.

Be the first to write a comment on this story!




 

  *  
  *   *
 
replica watches