CVE-2006-1475

Name of the Vulnerable Software and Affected Versions Windows XP SP2

Description The issue concerns the Windows Firewall in Microsoft Windows XP SP2, where it does not produce application alerts when an application is executed using the NTFS Alternate Data Streams (ADS) filename:stream syntax. This could allow local users to launch a Trojan horse attack without the victim receiving the alert that Windows Firewall would have produced for a non-ADS file. NTFS Alternate Data Streams (ADS) is a feature of the NTFS file system that allows multiple streams of data to be associated with a single file.

Recommendations For Windows XP SP2, consider disabling the use of NTFS Alternate Data Streams (ADS) to minimize the risk of exploitation, or apply specific configuration changes to the Windows Firewall to handle ADS executions appropriately. However, specific steps for these configurations are not provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.