Bugtraq mailing list archives
Netscape update on their web site
From: robert () FLEDGE WATSON ORG (Robert Watson)
Date: Fri, 13 Jun 1997 10:22:06 -0400
Sounds like extortion to me... URL: http://home.netscape.com/misc/security_update.html A potential security bug may exist in beta versions of Netscape Communicator and 3.x versions of Netscape Navigator. Netscape knows of no reports of successful exploitation of this potential bug, and no customer incidents have been reported. Technical details of the potential bug have not been disclosed to Netscape or the general public by the Internet Consultant from Denmark. Netscape's engineers have attempted on numerous occasions to obtain technical details of the potential problem from the Internet Consultant from Denmark through direct phone and email contact, but without success. Based on the information available, Netscape believes that the potential impact of this bug on users is limited due to the lack of public knowledge of how to replicate the bug. News reports have also indicated that in order to take advantage of the bug, a Web page author would not only need to obtain and understand the undisclosed details of the bug but would also need to obtain specific filenames from users' computers. The Internet Consultant from Denmark did disclose some technical details of the potential bug to specific members of the media. Netscape is working closely with those involved to uncover any technical details that might help in the investigation and verification of this potential problem. Netscape plans to continue vigorously pursuing validation of this potential bug and will develop a fix if necessary. Netscape will keep its customers and partners updated frequently about this issue through the Netscape home page.
Current thread:
- rshd gives away usernames, (continued)
- rshd gives away usernames David Holland (Jun 13)
- Re: rshd gives away usernames Erik Troan (Jun 13)
- Re: rshd gives away usernames Eric (Jun 13)
- Re: rshd gives away usernames Todd C. Miller (Jun 13)
- Re: rshd gives away usernames Alan Brown (Jun 14)
- Changing default UMASK for all daemons Dax Kelson (Jun 13)
- Re: Changing default UMASK for all daemons Joe Traister (Jun 14)
- Re: Changing default UMASK for all daemons Michael Helm (Jun 14)
- Re: Changing default UMASK for all daemons Tomasz R. Surmacz (Jun 16)
- Re: rshd gives away usernames Christophe Kalt (Jun 14)
- Netscape update on their web site Robert Watson (Jun 13)
- Re: Netscape update on their web site Manoj Kasichainula (Jun 13)
- Netscape Exploit... with technical details. Rusty Conover (Jun 13)
- Security Bulletins Digest Aleph One (Jun 13)