[1587] in WWW Security List Archive
JavaScript bugs *exposed* http://www.sjmercury.com/business/netsc304.htm
daemon@ATHENA.MIT.EDU (Gene Ingram)
Tue Mar 5 16:15:21 1996
Date: Tue, 05 Mar 1996 10:01:51 -0800
From: Gene Ingram <gene@hpfsvr01.cup.hp.com>
Reply-To: gene@hpfsvr01.cup.hp.com
To: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
JavaScript bugs finally hit the fan:
http://www.sjmercury.com
AN OUTBREAK OF BUGS in a feature of Netscape
Communications' Internet software is forcing the Silicon Valley
company to issue a new version of its flagship "Navigator"
program, even though the current one is only four
weeks old. Computer specialists studying Netscape's
JavaScript control language have found ways in
which a Web page could, if so designed,
surreptitiously discover what files exist on an
individual user's hard disk drive. And a separate bug
leads to an e-mail violation-of-privacy problem.
Story <http://www.sjmercury.com/business/netsc304.htm> by
Mercury News Staff Writer Lee Gomes
Click on Story link for complete newspaper article.
Gene
--
____________________________________________________________
Gene Ingram gene@cup.hp.com
ingram@pubs.holosys.com
