/>
X
Home & Office
Home Home & Office Networking

Government agency warns of Windows flaw

The UK's equivalent of CERT has warned of a buffer overflow vulnerability related to cutting and pasting HTML from a malicious Web page
Written by Andy McCue, Contributor on

The UK government's cyberagency responsible for warning about security incidents and electronic attacks on critical national infrastructure has issued an alert about a Microsoft buffer overflow vulnerability.

The Unified Incident Report and Alerting Scheme (UNIRAS), the UK's equivalent of CERT, has put out the warning following a Microsoft security bulletin last week.

The flaw was rated critical by Microsoft and consists of a buffer overflow in the HTML converter of most versions of Windows that could allow a hacker to execute malicious code.

The hole can be exploited by users cutting and pasting HTML from Web sites or just by viewing a Web site if the malicious code is embedded in a Web page.

UNIRAS recommends users should apply Microsoft patch MS03-023 and modify the security configuration of any applications that use Internet Explorer to disable active scripting and pasting.

For all security-related news, including updates on the latest viruses, hacking exploits and patches, check out ZDNet UK's Security News Section.

Let the editors know what you think in the Mailroom.

Editorial standards
Show Comments

Related

chat bot

What is ChatGPT and why does it matter? Here's what you need to know

screenshot-2023-03-29-at-3-24-48-pm.png

How to use ChatGPT to summarize a book, article, or research paper

A robot texting on a smartphone in space

How to use ChatGPT: What you need to know