The Training Book, the handbook for trainers
 
ITrain - International Association of Information Technology Trainers Navigator 4.02 Bug Fix
Netscape pepares update to Navigator 4.02
ITINFO Sponsor
Website Hosting by HostMaster

Fast, unlimited hits. Secure SSL servers.
Unlimited email aliasing, redirection, and autoresponders.
Triple webservers, Triple T1 lines.
Fast & accurate domain registration.

http://dgl.com/host/

Navigator 4.02 Bug Fix
by Dave Murphy
ISSN 1535-3613

Dave Murphy, DGL President & ITrain founder Netscape Communications is preparing an update to Navigator 4.02 to fight a "moderately serious" JavaScript bug, company officials said.

A Netscape spokesman said, "We have found the bugs. The bugs are fixed. Even though we only demoed the bugs in Windows 32, the fixes were written for all the platforms [Win 3.1, Unix, and the Macintosh]. We are testing them, and as soon as they pass muster, they will be released. It's unclear how and when those fixes will be released."

Andre dos Santos, a graduate student at the University of California at Santa Barbara, discovered what he calls "extremely threatening" security bugs in Navigator 4.02.

The JavaScript bugs allow a website to monitor information about the visitor's browser usage.

Netscape classified the problem as "moderately serious," officials said. The company has attributed the flaw to a single JavaScript bug that manifested its self in Navigator 4.01a and then reappeared in 4.02. "One fix will correct both problems," Netscape said.

According to dos Santos, the JavaScript problem allowed personal user information -- name, address, credit card numbers, phone numbers, bank passwords, and account numbers -- to be captured by the server site.

Subscribe to ITINFO.
Receive computing and Internet news & tips
by subscribing to the ITINFO information service.
Type your Internet email address in the form, and click "Subscribe."
Email Address:

Damar Group, Ltd. helps business use technology.

ITINFO is again accepting sponsors. Sponsor messages are included in ITINFO's email newsletter and are permanently posted to DGL's website and online reference areas.

ITINFO is an electronic publication of Damar Group, Ltd., publisher of Training Express computer learning guides. Comments and submissions to info@dgl.com.

Previous issues are on our website at dgl.com/dglinfo.

updated August 31, 1997
http://dgl.com/dglinfo/1997/dg970831.html

Damar GroupReturn to DGL homepage
Copyright © 1997, Damar Group, Ltd., All Rights Reserved