[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[linux-security] netscape buffer overflows
- To: linux-security
- Subject: [linux-security] netscape buffer overflows
- Date: Mon, 20 Nov 2000 11:44:00 -0800 (PST)
Problem Description
===================
Versions of netscape prior to 4.76 allow a client-side exploit through
a buffer overflow in html code. A malicious website operator can cause
arbitrary code to be executed by the user running the netscape client.
Affected Systems
================
All systems that run netscape < 4.76
Solution
========
upgrade to netscape 4.76
RedHat 6.x
rpm -Fvh netscape-common-4.76-0.6.2.i386.rpm netscape-communicator-4.76-0.6.2.i386.rpm netscape-navigator-4.76-0.6.2.i386.rpm
RedHat 7.0
rpm -Fvh netscape-common-4.76-1.i386.rpm netscape-communicator-4.76-1.i386.rpm netscape-navigator-4.76-1.i386.rpm