[4806] in WWW Security List Archive
Shockwave plug-in security loophole reported
daemon@ATHENA.MIT.EDU (Robert P Cunningham)
Thu Mar 13 20:25:30 1997
Date: Thu, 13 Mar 97 12:40 WET
From: bob@lava.net (Robert P Cunningham)
To: www-security@ns2.rutgers.edu
Errors-To: owner-www-security@ns2.rutgers.edu
For those interested in such things, David de Vitry (a developer
at Poppe Tyson Interactive) has posted a note on his own web site
about a security loophole with the Shockwave plug-in when used with
Navigator 3.x (and possibly 2.x...and possibly even some other
browsers):
http://www.webcomics.com/shockwave/
