Dangerous holes in Windows XP
Two serious gaps in the 'Universal Plug and Play' (UPNP) function have prompted Microsoft to publish a patch for their latest operating system, Windows XP. The bugs make it possible to access and control any WinXP system over the Internet.
The UPNP normally regulates the use of network devices and has all conceivable rights for this The attacker can also use the security gap. Another error also enables a so-called Dos attack, in which the target computer is flooded with requests until it is completely overloaded. Both systems with Windows XP and older versions are affected if the client for 'Internet Connection Sharing' (ICS) supplied with XP is installed.