Netscape Patching Browser Bug

Netscape Communications Corp. plans to fix a glitch that can lead to information on users’ hard drives being revealed.

The glitch was discovered by Georgi Guninski, a Bulgarian who discovered a JavaScript security flaw last month. The bug can cause the content of HTML and cache files to be revealed. It reveals only parsed HTML files and not a Web page’s actual source code.

Guninski was awarded a $1,000 bounty for discovering the bug which affects Communicator version 4.5 for Windows 95 and 4.08 for Windows NT. Guninski showed how the bug worked on his Web page. He said one way to circumvent the flaw is disabling JavaScript.

Netscape said it has received no reports of anyone being affected by the bug.

News Around the Web