Memory corruption software flaw could leave door open for wireless worm, says Sophos.
Sophos has advised computer users to ensure they are running the latest security patches following the announcement of vulnerabilities in Intel Centrino's wireless features. The flaws could theoretically allow hackers to spread malicious code, including worms, wirelessly between laptops.
According to a statement by Intel, the security vulnerabilities exist in the Microsoft Windows drivers for certain versions of their Wireless Network Connection hardware.
"A hacker could exploit these wireless vulnerabilities to run malicious code on an innocent user's laptop, giving them control over other people's PCs or spreading a wireless worm which could leapfrog from one laptop to the next," said Graham Cluley, senior technology consultant for Sophos. "The good news is that we haven't seen any attacks using this exploit yet, but that doesn't mean computer users should be laid back about applying fixes."
Although Intel has published generic updates to its software, which reportedly fix the issue on its website, the company is recommending that users contact their laptop manufacturers for vendor-specific information and fixes.
Related links: (Open in a new window.)
support.intel.com/support/wireless/wlan/sb/CS-023068.htm
Taken from Information Security Bulletin.