|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: Dangerous Java/Netscape Security Hole
From: tkuiper
TOBIT.COMDate: Mon Aug 07 2000 - 02:40:30 CDT
- Next message: Georgi Guninski: "MS Word and MS Access vulnerability - executing arbitrary programs, may be exploited by IE/Outlook"
- Previous message: Simon Cozens: "Re: sperl 5.00503 (and newer ;) exploit"
- Maybe in reply to: Dan Brumleve: "Dangerous Java/Netscape Security Hole"
- Next in thread: Michael H. Warfield: "Re: Dangerous Java/Netscape Security Hole"
- Maybe reply: tkuiperTOBIT.COM: "Re: Dangerous Java/Netscape Security Hole"
- Reply: Michael H. Warfield: "Re: Dangerous Java/Netscape Security Hole"
- Reply: Art Savelev: "Re: Dangerous Java/Netscape Security Hole"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
which versions are affected, even Netscape 6 PRE?
Best Regards,
Thomas
-------- Original Message --------
Subject: Dangerous Java/Netscape Security Hole (07-Aug-2000 9:35)
From: dan=securityBRUMLEVE.COM
To: tkuiperTOBIT.COM
Dear BugTraq,
I've found some security holes in Java and Netscape
that allow arbitrary network access and read-access
for local files and directories. As a demonstration
I've written Brown Orifice HTTPD, a web server and file
sharing tool that runs in Netscape Communicator on all
tested platforms. For more information, see:
http://www.brumleve.com/BrownOrifice
Thomas Kuiper | tkuipertobit.com | www.tobit.com __
Core Development | ICQ #8345483 | /__/\
Tobit Software | PGP Key on Request | ask your server. \__\/
To: dan=securityBRUMLEVE.COM
BUGTRAQSECURITYFOCUS.COM
- Next message: Georgi Guninski: "MS Word and MS Access vulnerability - executing arbitrary programs, may be exploited by IE/Outlook"
- Previous message: Simon Cozens: "Re: sperl 5.00503 (and newer ;) exploit"
- Maybe in reply to: Dan Brumleve: "Dangerous Java/Netscape Security Hole"
- Next in thread: Michael H. Warfield: "Re: Dangerous Java/Netscape Security Hole"
- Maybe reply: tkuiperTOBIT.COM: "Re: Dangerous Java/Netscape Security Hole"
- Reply: Michael H. Warfield: "Re: Dangerous Java/Netscape Security Hole"
- Reply: Art Savelev: "Re: Dangerous Java/Netscape Security Hole"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]