[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Netscape 2.01 fixes server vulnerabilities by breaking the client...

To: Tom Weinstein <[email protected]>
Subject: Re: Netscape 2.01 fixes server vulnerabilities by breaking the client...
From: Rich Graves <[email protected]>
Date: Fri, 29 Mar 1996 18:17:36 -0800 (PST)
cc: Louis Freeh <[email protected]>
In-Reply-To: <[email protected]>
Sender: [email protected]

On Fri, 29 Mar 1996, Tom Weinstein wrote:

> It may be unpleasant, but it's a fact that there was a real security
> hole here.  There is a well known buffer overrun bug in finger that a
> lot of people inside firewalls haven't fixed.  Using gopher: URLs
> in IMG tags it was possible to do nasty things.  We tried to err on
> the side of permissivity, but finger was one port we just couldn't
> allow.  Yes, it sucks.  So does someone reaching through your firewall
> and running commands as root.

How about limiting URLs on non-blessed ports to, say, 64 alphanumeric
characters? I'm sure the documentation writers and technical support
folks would hate you, but it should address these concerns.

-rich

References:
- Re: Netscape 2.01 fixes server vulnerabilities by breaking the client...
  - From: Tom Weinstein <[email protected]>

Prev by Date: Re: Anonymous Cpunk Bashing
Next by Date: Re: So, what crypto legislation (if any) is necessary?
Prev by thread: Re: Netscape 2.01 fixes server vulnerabilities by breaking the client...
Next by thread: ANNOUNCE: remail@extropia moves
Index(es):
- Date
- Thread