[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Another Netscape Bug (and possible security hole)

To: [email protected] (Aleph One)
Subject: Re: Another Netscape Bug (and possible security hole)
From: Ray Cromwell <[email protected]>
Date: Sat, 23 Sep 1995 01:13:13 -0400 (EDT)
Cc: [email protected], [email protected], [email protected], [email protected]
In-Reply-To: <[email protected]> from "Aleph One" at Sep 22, 95 07:51:02 pm
Sender: [email protected]

> 
> Actually it allows you to imbed data and commands to run. What the latest
> MSWord virus did is imbed a virus dropper encoded in the word document
> and then run it trough the dos debug command to make it a binary file
> (if you ever read the 40HEX virus magazine you should know how this works).
> From there it just run the dropper.

  You could make a worm out of this Netscape bug by having it look
for a user's homepage when it infects, and then inserting the
URL into that page.

References:
- Re: Another Netscape Bug (and possible security hole)
  - From: Aleph One <[email protected]>

Prev by Date: Re: "Gnusaic"? Why not a Gnu-Style Web Browser?
Next by Date: Re: The Next Hack
Prev by thread: Re: Another Netscape Bug (and possible security hole)
Next by thread: Re: Another Netscape Bug (and possible security hole)
Index(es):
- Date
- Thread