Skip Links

Microsoft flaw affects XP, Server 2003

By Jeremy Kirk, IDG News Service
June 02, 2006 09:13 AM ET
  • Print
. What's this?

A new flaw found in Microsoft's software could be exploited to cause a denial-of-service attack on certain applications, although the bug isn't viewed as being severe.

The flaw could be exploited through a buffer overflow attack, security vendor Secunia reported Thursday. A buffer overflow occurs when excess data flows into an area of memory, spilling over so that it overwrites data in adjacent areas or causes unintended code to execute.

For the attack to occur, a user would have to be lured into visiting a malicious Web site with a overly-long URL, or else opening an Internet shortcut that leads to such a site.

Microsoft said on Friday that it was investigating the flaw and that it wasn't aware of any attacks yet taking advantage of it.

Related Content

Secunia rated the vulnerability as "less critical," the second-lowest severity rating on its five-level scale. The flaw could be used to crash applications, but a hacker might not be able to run malicious code thanks to a prevention mechanism in Windows, the company said.

The problem affects the Home and Professional editions of Microsoft Windows XP Service Pack 2, and four versions of Windows Server 2003: Datacenter, Enterprise, Standard and Web edition, Secunia said. It's advisory can be found here.

The IDG News Service is a Network World affiliate.

  • Print
What is Tech Briefcase?
TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more
Bookmark content
Speed up your research efforts with content across the web.
Search and Store
Find the white papers you need. Create folders for any topic.
View Anywhere
Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.
Don't have an account yet?

Most Read

View more Most Read

Videos

rssRss Feed

Latest News

rssRss Feed