Bugtraq mailing list archives
Possible Netscape Crypto Security Flaw
From: Haze () BEER COM (Haze)
Date: Sun, 14 Feb 1999 21:13:46 -0600
When you go into Netscape Messenger and check your mail, the software stores the password you used in the registry and encrypts it. It remains there for as long as netscape is open. The login and password is kept in: HKEY_CURRENT_USER\Software\Netscape\Netscape Navigator\biff\users\ username(varies)\servers\<mail server> Here is the scenario... Let's say Regular Joe A runs Netscape and then checks his email first off... He checks it,enters his password, and his password is stored in the registry... Let's say after he gets done checking his mail, he doesn't close netscape and decides to browse the web. He comes up along Malicious Site A which contains a malicious javascript code to read his local registry files and retrieve his mail server login(unencrypted), encrypted password, and his mail server. Well then the cracker could perform a brute force crack on the encryption and attempt to gain access to the Regular Joe A's ISP and/or pop3 e-mail account...
Current thread:
- Re: [proftpd-l] root compromise ? (fwd) Rodrigo Campos (Feb 09)
- Re: [proftpd-l] root compromise ? (fwd) Joe Schmo (Feb 12)
- Re: [proftpd-l] root compromise ? (fwd) monk (Feb 13)
- Re: [proftpd-l] root compromise ? (fwd) Dirk Moerenhout (Feb 13)
- Possible Netscape Crypto Security Flaw Haze (Feb 14)
- Re: Possible Netscape Crypto Security Flaw Pete Krawczyk (Feb 16)
- snap utility for AIX. Larry W. Cashdollar (Feb 17)
- Re: snap utility for AIX. Brian Hauber (Feb 18)
- mSQL vulnerability. Christofer C. Bell (Feb 17)
- OT: Copyright on Security advisories Aviram Jenik (Feb 18)
- Re: OT: Copyright on Security advisories Doug Granzow (Feb 19)
- Re: mSQL vulnerability. John W. Temples (Feb 18)
- Re: [proftpd-l] root compromise ? (fwd) Joe Schmo (Feb 12)
- Debian GNU/Linux 2.0r5 released (fwd) Jamie Fifield (Feb 17)
- Regarding passwords in registry keys. Ash (Feb 19)
- Re: [proftpd-l] root compromise ? (fwd) Nic Bellamy (Feb 14)