[1950] in WWW Security List Archive
Re: Java/Netscape security holes: hole du jour and summary
daemon@ATHENA.MIT.EDU (John Robert LoVerso)
Wed May 1 18:36:39 1996
To: Prentiss Riddle <riddle@is.rice.edu>
Cc: www-security@ns2.rutgers.edu
In-reply-to: Message from Prentiss Riddle <riddle@is.rice.edu>
<199604301531.KAA09734@brazos.is.rice.edu> .
Date: Wed, 01 May 96 15:52:23 -0400
From: John Robert LoVerso <loverso@osf.org>
Errors-To: owner-www-security@ns2.rutgers.edu
> | For bugs in Javascript, see John LoVerso's page
> | http://www.osf.org/~loverso/javascript/
All three of the bugs I discovered that affect 2.01 are fixed as of
3.0b3 (PR2), including the abuse of HTTP file upload to steal files.
John
