Thinking about getting Windows XP? Maybe you should wait until the dust settles. My e-mail in-box has been flooded with reports of bad "XPeriences" with the new operating system (see our news story for more details on XP's specific problems).
One serious snag: If you purchased a new PC with Windows XP preinstalled, and you subsequently reinstall, repair, or upgrade XP, Microsoft says that you may lose some important files and settings, including files you store in XP's Shared Documents folder. This bug does not affect users who upgrade to XP from another OS.
Microsoft issued a patch to fix the problem. Unfortunately, the fix cannot retrieve your lost data and settings--another good argument for frequent backups. Download the patch or go to Windows Update to grab XP's Critical Updates.
XP Security Threats
What else is wrong with Windows XP? This: It allows crackers to get access to your computer through the Universal Plug and Play feature.
Universal Plug and Play is an extension of the Plug and Play system that has been around for years. Plug and Play is meant to let you automatically use devices connected to your computer--like printers and scanners--without having to futz around with installation disks and device drivers. Universal Plug and Play allows your machine to find and use devices connected anywhere on a network.
However, a pair of flaws in the way that Universal Plug and Play "discovers" devices could enable a bad guy to crash your system, or even take complete control of it.
Devices compatible with Universal Plug and Play send out messages, called notifications, to tell XP that they're available for use. A hacker bent on sabotaging your PC could send you a message that is designed to look like a genuine notification. In reality, though, the false message would contain too much data, causing Universal Plug and Play to overflow. The malevolent hacker could then run code that circumvents XP's security protections.
A second hole also involves bogus Universal Plug and Play notifications sent over the Net, but is less serious. However, it could also affect Windows Me users if they have enabled Universal Plug and Play. (Windows 98 users would be affected only if they have installed the Windows XP version of Internet Connection Sharing.)
Legitimate Universal Plug and Play notifications sometimes contain the URL of a server where Windows can find information that lets the OS use the device. A fake notification could contain a URL that sends Windows too much information. Fortunately, this hack would only cause your computer to slow drastically or crash. Microsoft's patch takes care of both problems. Visit Windows Update or download the patch.
Stuart J. Johnston is a contributing editor for PC World.Bugged?
Found a hardware or software bug? Tell us about it via e-mail at bugs@pcworld.com.
- Page 1 of 2
- Next »
Would you recommend this story? YES NO
- Mouth-Mounted MP3 Player Lets You Hear Beats Through Your Teeth No headphones required: A design student creates a mouth mounted MP3 player that uses your head as a speaker.
- Windows 8 Upgrades Cost $15, But You Should Wait Securing your upgrade now might seem like a deal, but on second thought, consider whether today's hardware is best equipped to run Microsoft's new operating system.
- Microsoft Does the Right Thing with Default 'Do Not Track' Microsoft has enabled 'Do Not Track' by default in Internet Explorer for the Windows 8 Release Preview to give users a choice, and control over their own privacy.
- Anonymous Claims Attack on Facebook The social network experiences scattered service interruptions; Facebook says it's fixed, but some issues continue.
- 12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
- Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.
-
Windows 8 Upgrades Cost $15, But You Should Wait
-
Windows 8 iPad Rivals Ahoy!
-
Report: Obama Ordered Stuxnet Attacks on Iran
-
Confirmed: Windows 8 Upgrades for $15
-
Chrome Steals Second From Firefox in Browser Wars
-
How to Make Windows and Mac OS Play Nicely Together
-
E3 Preview: What We Hope to See at E3 2012
-
Games Forecast: 10 Awesome Titles Coming Soon
-
Fedora Linux Capitulates to Microsoft Boot Certificate
-
Five Fun and Geeky Alternatives to Instagram
-
How to Download and Install the Microsoft Windows 8 Release Preview
-
Windows 8 Release Preview Impressions
Ad Choices