|
|
Grave Windows XP software glitches were discovered last month that pose unprecedented
risk to consumers. These flaws, uncovered by security researchers with eEye
Digital Security, Inc., allow hackers to surreptitiously steal or destroy a
victim's data files across the Internet or implant malicious computer code in
their computer--without requiring the victim to do anything other than connect
to the Internet. The problem also affects Windows 98 and ME systems on which
UPnP (Universal Plug and Play) was installed.
For a full description of the problem and a link to Microsoft's free solution,
see Microsoft security Bulletin MS01-059 at http://microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-059.asp
Note: The FBI has recommended immediately disabling UPnP support for all versions of Windows. "UnPlug n' Pray," a free utility for uninstalling UPnP on any version of Windows, may be downloaded from http://www.grc.com/UnPnP/UnPnP.htm