A vulnerability has been identified in the built-in Windows firewall affecting Windows 7, Windows Vista, Windows Server 2008, Windows XP with Service Pack 2 and later, and Windows Server 2003 with Service Pack 1 and later. While an administrator can set detailed security policies for different profiles, when certain traffic is sent such as NBNS lookups, the rules are bypassed by Windows.
This enables an attacker to abuse this vulnerability in order to poison NetBIOS names. More information in the advisory.







Posljednja novost 