Windows Updates

"An unchecked buffer exists in a function that is used by the Windows shell to extract custom attribute information from some folders. A security vulnerability occurs because a malicious user can construct an attack that can exploit this flaw and run code on your computer.
An attacker could seek to exploit this vulnerability by creating a Desktop.ini file that contains a corrupted custom attribute, and then host it on a network share. If a user browses the shared folder where the file is stored, the vulnerability could be exploited. A successful attack could either cause the Windows shell to fail or cause an attacker’s code to run on the user’s computer in the security context of the user."

WHAT??? Could you repeat that in English?

Microspeak is not easy to understand, even for geeks like me. Like a lot of legal documents, the words and phrases Microsoft uses can be very confusing. Fortunately, we don't need to understand the 'fine print' of these descriptions - we just need to act on them.

The Windows Update site is a valuable tool that you should use regularly. By default, Windows XP looks for updates regularly and downloads them to your computer, letting you know when they are ready to install. It still doesn't hurt to check the site once a week or so.

When you visit the Windows Update site (in Internet Explorer got to Tools and click on Windows Update to get there) you need to click on Scan for Updates to start the process.


The scan will look to see if you have the most recent versions of the files that are in their database, based on the specific version of Windows that you have. When the scan is complete, it will inform you of the number of updates that need to be installed, and ask you to Review and Install them. When you click that link, you will see something like this.

It is important to note that only the Critical updates will appear in this list. You will not get any of the extras that Microsoft has updated by clicking the Install Now button. You can get those later if you want. (If you see the red message like the one above on your screen, you need to click Install Now and then click OK in the window that comes up. Come back after the installation is complete and get the rest of the updates.)

After the download is complete, the installation process begins. This will take about twice as long as the download did, and you have to stay online to complete the installation. Accept the agreements (after you read them) and walk through the installation wizards, and restart you computer when everything is completed.

The left side of the Windows Updates page shows Critical updates, Windows XP (or ME or 98, depending on your system), and Driver Updates.

The Critical Updates are just that - critical. Get them.

The Windows XP updates are 'Recommended' by Microsoft, but are a take it or leave it option. If you don't use Windows Movie Maker, do you really want to get Windows Movie Maker 2? If you want these updates, they are fine to have, but they are not necessary from a security standpoint.

The Driver Updates should be avoided. In fact, I have disabled that from even appearing in my Windows Updates screen. These are generic drivers that may or may not do anything for your computer. I tried a driver update once, and I totally lost my network card. It was a bear to get it working again.
If you want to check for new drivers for your computer, I recommend going to the manufacturer's website and looking there. If you go to the PC manufacturer's site (Gateway, Dell, etc.) they will have a place that you can download drivers that are specific to your model of computer. If you have added something to your system (scanner, printer, video card, etc.) go to the site for the company that made the item to look for the most recent drivers.



If you want to get everything in one fell swoop, or pick and choose individual updates, Microsoft has released a Windows XP Rollup Package. This contains all of the updates that are found through the Windows Update site, but they can be saved to your computer before installation. By doing that, you can copy the files to other computers that have a dial-up connection and speed their installation. A nice thing to do for friends that still have to wait for the pages to be displayed!


AntiSpyware Tools
SpyBot Search and Destroy*
AdAware*
CWShredder*
Pest Patrol
Ewido
AntiVirus Tools
Grisoft AVG*
AntiVir Personal Edition*
Avast Anti Virus*
NOD32
Panda
PC-Cillin
McAfee
Norton
Firewall Tools
WebRoot Firewall
Zone Alarm*
PC Tools Firewall Plus*
Kerio Personal Firewall*
Miscellaneous Tools
PopUp Manager*
SpamBayes*
Spamihilator*
TrojanHunter
* Indicates a program is free or has a free version available.