From: John Hegarty (jhegarty at domain sdf.lonestar.org)
Date: Fri 22 Oct 1999 - 17:16:19 IST
Story from cnet
IE vulnerable to Java security problem
A new weakness has been discovered in Microsoft's version of the Java
technology, one that allows a malicious Java program launched over the
Internet to delete a computer's files or take any of a host of equally
dangerous actions. The security hole takes advantage of a problem that
allows an untrusted Java program to masquerade as a trusted one. An
"attack applet" exploiting the hole could, for instance, slip in under the
radar of the Internet Explorer Web browser and delete files. This news
comes on the heels of a vulnerability Microsoft acknowledged recently that
could let a malicious Web site operator rifle through visitors' files.
Microsoft acknowledged the problem but said that only a very sophisticated
programmer would be able to take advantage of it, and that there have been
no reported applet attacks. However, a spokesperson said Microsoft will
post a fix as soon as possible.
------------------------------------------------------------------------------
jhegarty at domain sdf.lonestar.org
Hi! I'm a .signature virus! Copy me into your ~/.signature to help me
spread!
This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:04:46 GMT