What is the hot ground of Trojan horse exemption in Vista sidebar?

The Sidebar is a new feature that Vista is proud of. It allows many small programs to be displayed on the desktop in real time, which is very convenient for use. Once released, it will be favored by users. However, I recently noticed a problem when testing the Vista sidebar tool-some requirements Network The connected gadgets have quietly played a role without the firewall's permission.

To confirm the problem, I specifically downloaded a tool named "Live City", which is an online tool. Map Software, which has never been installed before, of course, will not go to the "exception" List of the firewall.

Double-click the installation button. A security warning is displayed, indicating that the sender cannot be verified, but network access is not mentioned.

Click "Install ", Tools It appears on the sidebar and displays the Beijing Map (the map displayed by users in different cities may be different ).

For accuracy Network In command line mode, we run the netstat-an command. The following is a comparison of the ports before and after the "Live City" installation.

"Live City" before installation

After "Live City" is installed

The red line shows that after "Live City" is installed, the network is automatically connected to the server 220.202.79.230, but the firewall does not give any warning.

Fortunately, I can determine that this is a normal Software But it is worrying that firewall control is bypassed in such a simple way. Although there are no examples of using the sidebar to do evil, it does not mean that you can rest assured. The ANI (Dynamic Cursor) vulnerability has stirred up. Security The famous Vista is not that reassuring.