NETSCAPE VULNERABLE TO BROWN ORIFICE EXPLOIT
Flaws in Netscape's implementation of Java enable a Web site to
transform Netscape versions 4.70 through 4.74 into a file server, thus
making files in any directory on your system available for downloading
worldwide. Skeptical? Open Netscape, and visit the Brown Orifice home
page. Just indicate the directory you'd like to publish and click the
Publish This Directory button. Fun, huh? If you or others in your
organization are using any of these versions of Netscape, you should
immediately upgrade to version 4.75 (visit Netscape to obtain the
upgrade).
Note that this vulnerability isn't restricted to the Linux version of
Netscape; Windows and Macintosh users of 4.70 through 4.74 are also
vulnerable and should immediately upgrade.
http://www.brumleve.com/BrownOrifice/
http://www.netscape.com/computing/download/index.html?cp=scimid
Flaws in Netscape's implementation of Java enable a Web site to
transform Netscape versions 4.70 through 4.74 into a file server, thus
making files in any directory on your system available for downloading
worldwide. Skeptical? Open Netscape, and visit the Brown Orifice home
page. Just indicate the directory you'd like to publish and click the
Publish This Directory button. Fun, huh? If you or others in your
organization are using any of these versions of Netscape, you should
immediately upgrade to version 4.75 (visit Netscape to obtain the
upgrade).
Note that this vulnerability isn't restricted to the Linux version of
Netscape; Windows and Macintosh users of 4.70 through 4.74 are also
vulnerable and should immediately upgrade.
http://www.brumleve.com/BrownOrifice/
http://www.netscape.com/computing/download/index.html?cp=scimid
