comes this article
[bold emphasis mine]
IT: Windows Wireless Networking Flaw Identified
Posted by Zonk on Sunday January 15, @08:44AM
from the like-me-complicated-but-interesting dept.
An anonymous reader writes "Washingtonpost.com is reporting from the 2nd annual Shmoocon hacker conference about the release of a previously undocumented vulnerability in Windows. The flaw takes advantage of a feature on Windows laptops that have wireless cards built-in. Security researcher Mark Loveless found that Windows laptops which cannot find a wireless connection are configured to broadcast the name of the last SSID they associated with.
They assign themselves an ad-hoc 'link local' (think 169.254.x.x.) address, and an attacker can configure his machine to broadcast an SSID of the same name. Thus, the attacker associates with that 'network' and communicates directly with the victim's machine.
The funny part from the Post blog entry is that Microsoft helped author the RFC for link local."