Bugtraq mailing list archives

Re: Netscape Exploit SOLVED

From: loverso () OPENGROUP ORG (John Robert LoVerso)
Date: Fri, 20 Jun 1997 10:33:21 -0400


Yes, Paul's approach only worked when the exploit files were accessed via
"file:".

The next problem would be, how can we make the client side reload this
page automatically? There would be several ways to accomplish. It will
work with JavaScript, but it 'might' also work if the document expiry
date is specified.


Creating a working exploit that can be remotely loaded isn't difficult.
I sent Paul one on Monday and he called me about his version yesterday.
He is considering releasing it here.

John

Current thread:

Re: Netscape Exploit SOLVED Paul T. Kooros (Jun 16)
- Re: Netscape Exploit SOLVED Yusuf Motiwala (Jun 18)
- Netscape Communicator 4.01 Aleph One (Jun 18)
- [Fwd: DESCHALL Press Release] Brian Young (Jun 18)
- <Possible follow-ups>
- Re: Netscape Exploit SOLVED Edwin Li-Kai Liu (Jun 19)
  - Re: Netscape Exploit SOLVED John Robert LoVerso (Jun 20)
- Re: Netscape Exploit SOLVED Aymeric Grassart (Jun 20)
- Re: Netscape exploit solved Paul T. Kooros (Jun 23)