Microsoft has released information about a new vulnerability in Windows XP Service Pack 2 (SP2)

This vulnerability is relevant for those who use the Firewall included in Windows XP SP2 and a dial-up connection to access the Internet.
Some dial-up software's configuration of the routing tables, combined with the way Windows Firewall interprets the local subnet, may have as a result that the whole Internet is presumed to be your local network.

The result may be that your local files may be accessed by anyone on the Internet.

Microsoft Severity Rating for this issue is Critical

Critical is Microsoft's highest vulnerability rating.

More detailed information is available in Microsoft's vulnerability description where a patch for this vulnerability may be downloaded.

Norman advices all affected users to download the security update as soon as possible, to be protected from potential exploits.

Per Olav Førland