There is a new serious vulnerability that was discovered recently which affects every version of Windows including the latest one, Vista.

Symantec’s DeepSight notification service announced that the bug is located in a feature called Web Proxy Autodiscovery (WPAD). It is a continuation of a previous bug that Microsoft fixed seven years ago.

It can “intercept web sessions, direct browsers to malicious proxies, and effectively gain control over unsuspecting users’ web traffic,” according to Symantec.

The general manager of product security for Microsoft said, “Now that we understand the issue we’re researching comprehensive mitigations and workarounds to protect customers.”

Source: The Register