Thinking about getting Windows XP? Maybe you should wait until the dust settles. My e-mail in-box has been flooded with reports of bad "XPeriences" with the new operating system (see our news story for more details on XP's specific problems).
One serious snag: If you purchased a new PC with Windows XP preinstalled, and you subsequently reinstall, repair, or upgrade XP, Microsoft says that you may lose some important files and settings, including files you store in XP's Shared Documents folder. This bug does not affect users who upgrade to XP from another OS.
Microsoft issued a patch to fix the problem. Unfortunately, the fix cannot retrieve your lost data and settings--another good argument for frequent backups. Download the patch or go to Windows Update to grab XP's Critical Updates.
XP Security Threats
What else is wrong with Windows XP? This: It allows crackers to get access to your computer through the Universal Plug and Play feature.
Universal Plug and Play is an extension of the Plug and Play system that has been around for years. Plug and Play is meant to let you automatically use devices connected to your computer--like printers and scanners--without having to futz around with installation disks and device drivers. Universal Plug and Play allows your machine to find and use devices connected anywhere on a network.
However, a pair of flaws in the way that Universal Plug and Play "discovers" devices could enable a bad guy to crash your system, or even take complete control of it.
Devices compatible with Universal Plug and Play send out messages, called notifications, to tell XP that they're available for use. A hacker bent on sabotaging your PC could send you a message that is designed to look like a genuine notification. In reality, though, the false message would contain too much data, causing Universal Plug and Play to overflow. The malevolent hacker could then run code that circumvents XP's security protections.
A second hole also involves bogus Universal Plug and Play notifications sent over the Net, but is less serious. However, it could also affect Windows Me users if they have enabled Universal Plug and Play. (Windows 98 users would be affected only if they have installed the Windows XP version of Internet Connection Sharing.)
Legitimate Universal Plug and Play notifications sometimes contain the URL of a server where Windows can find information that lets the OS use the device. A fake notification could contain a URL that sends Windows too much information. Fortunately, this hack would only cause your computer to slow drastically or crash. Microsoft's patch takes care of both problems. Visit Windows Update or download the patch.
Stuart J. Johnston is a contributing editor for PC World.Bugged?
Found a hardware or software bug? Tell us about it via e-mail at bugs@pcworld.com.
- Page 1 of 2
- Next »
Would you recommend this story? YES NO
-
Speed Up Everything!
PCWorld shows you the secrets to improve performance on all your hardware.
-
Stellar Tech Deals
Don't miss out on great deals from around the web.
-
Install a Windows Service Pack That Refuses to Install
-
Back Up Your Windows XP Patches and Service Packs
-
Upgrading from Windows Vista to Windows 7: Can Your System Handle It?
- Plug a Windows XP Copy Protection Hole
-
Essential Windows Tricks
-
Five Things You Should Know About Upgrading From XP to Windows 7
-
ThinkPad Edge E420 Lenovo Style in an Affordable Package
Buy now direct from Lenovo -
ThinkPad X220 Fast and light, with great input ergonomics and battery life, this powerhouse ultraportable is best-of-breed.
Buy now direct from Lenovo -
ThinkPad X120e One of the best netbooks ever, X120e has the best netbook keyboard ever--nothing else comes close
Buy now direct from Lenovo
- Indie Kinect Game Turns Your Doodles Into Weapons Of War Soldiers are advancing, and the only way to stop them is to by doodling on a whiteboard.
- These Pants Have a Built-In Keyboard, May Draw Funny Looks Want to show off your geeky credentials while also having vital useful PC accessories with you at all times? Look at these concept pants.
- Angry Birds in Space: The Final Merchandising Frontier? Angry Birds in Space will arrive March 22.
- This Card Game Takes Your Nerd Altercations to the Next Level Can't settle your differences in a debate? Geek Fight will let you duke it out via a card game.
- 12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
- Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.
-
Paint With Sound in Browser-Based Auditorium Game
-
The ICade and Atari Arcade Bring Old-School Gaming to the Apple IPad
-
Android Tablet Productivity Pack
-
Indie Kinect Game Turns Your Doodles Into Weapons Of War
-
New Windows 8 Logo is Latest in Beta Buildup
-
Achievement Unlocked 2: A Game You Can't Lose--With Elephants
-
Early Copies of Mass Effect 3 Will Go Into Space
-
Liberties Groups Rap Google's Skirting of Safari's Privacy Protections
-
Google's Safari Tracking Debacle: Reality Check
-
Apple, Microsoft to Duel in '12 With OS Upgrades
-
Meet Mountain Lion: Visual Tour
-
Thunderbird Tip: Change IMAP Folder Subscriptions
Ad Choices