Your Web News in One Place

An Interest In:

Web News this Week

Search Archive

Some of Our Sources

View All Sources

Help Webnuz

Referal links:

Sign up for GreenGeeks web hosting
November 9, 2020 08:34 am

UK Agency Demands Company Stop Using Name Which Includes an HTML Closing Tag

A British software engineer came up with "a fun playful name" for his consulting business. He'd named it: ""> Unfortunately, this did not amuse the official registrar of companies in the United Kingdom (known as Companies House). The Guardian reports that the U.K. agency "has forced the company to change its name after it belatedly realised it could pose a security risk." Henceforward, the software engineer's consulting business will instead be legally known as "THAT COMPANY WHOSE NAME USED TO CONTAIN HTML SCRIPT TAGS LTD."He now says he didn't realise that Companies House was actually vulnerable to the extremely simple technique he used, known as "cross-site scripting", which allows an attacker to run code from one website on another. Engadget adds:Companies House, meanwhile, said it had "put measures in place" to prevent a repeat. You won't be trying this yourself, at least not in the U.K. It's more than a little amusing to see a for-the-laughs code name stir up trouble, but this also illustrates just how fragile web security can be.

Read more of this story at Slashdot.


Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/KgPY9NNCpWw/uk-agency-demands-company-stop-using-name-which-includes-an-html-closing-tag

Share this article:    Share on Facebook
View Full Article

Slashdot

Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..

More About this Source Visit Slashdot