Microsoft KB Archive/900906

From BetaArchive Wiki
Knowledge Base


Data Execution Prevention does not apply to programs and services after you install Windows XP Service Pack 2 on a computer that has Windows Server 2003 Beta for 64-bit Extended System installed

Article ID: 900906

Article Last Modified on 8/8/2005


APPLIES TO

  • Microsoft Windows XP Service Pack 2, when used with:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Media Center Edition 2002
    • Microsoft Windows XP Professional
    • Microsoft Windows XP Tablet PC Edition



SYMPTOMS

Consider the following scenario:

  • You are using a computer that is running Microsoft Windows Server 2003 Beta for 64-bit Extended Systems.
  • You install Microsoft Windows XP with Service Pack 2 (SP2) on the computer.
  • The /noexecute=optin switch is in the boot loader section of the Boot.ini file.

However, Data Execution Prevention (DEP) does not apply to programs and services that run on the computer. Additionally, the following informational message appears on the Data Execution Prevention tab:

Your computer's processor does not support hardware-based DEP. However, Windows can use DEP software to help prevent some types of attacks.

This informational message appears even though the computer has a processor that supports hardware-based DEP.

CAUSE

This issue occurs because installation of Windows XP with SP2 does not replace the Boot Loader from Windows Server 2003 Beta for 64-bit Extended Systems. The Boot Loader from Windows Server 2003 Beta for 64-bit Extended Systems does not automatically load the Physical Address Extension (PAE) kernel if the /noexecute=optin switch is in the boot loader section of the Boot.ini file. The PAE kernel is required for hardware-based DEP functionality.

RESOLUTION

To resolve this issue, follow these steps to add the /PAE boot switch to the Boot.ini file for the Windows XP SP2 installation:

  1. Click Start, click Run, type sysdm.cpl in the Open box, and then click OK.
  2. On the Advanced tab, click Settings under Startup and Recovery.
  3. Under System Startup, click Edit.
  4. Find the boot entry for the Windows XP with SP2 installation.
  5. Add the /PAE boot switch to the end of the boot entry for the Windows XP with SP2 installation. For example, the content of the Boot.ini file is similar to the following content:

    [boot loader]
    timeout=30
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional” /fastdetect /noexecute=optin /PAE

  6. Save the Boot.ini file.
  7. Click OK two times.
  8. Restart the computer.


MORE INFORMATION

For more information about a related topic, click the following article number to view the article in the Microsoft Knowledge Base:

875352 A detailed description of the Data Execution Prevention (DEP) feature in Windows XP Service Pack 2, Windows XP Tablet PC Edition 2005, and Windows Server 2003


Keywords: kbtshoot kbprb KB900906



Send feedback to Microsoft

© Microsoft Corporation. All rights reserved.


Retrieved from ‘https://www.betaarchive.com/wiki/index.php?title=Microsoft_KB_Archive/900906&oldid=215317
the Creative Commons 3.0 ShareAlike (except the Microsoft KB Archive).
Powered by MediaWiki