On Mon, Aug 21, 2000 at 06:19:03PM -0700, Mark Wagnon wrote: > On 08/21/00 16:48:51 -0800, Ethan Benson wrote: > > be aware that you are probably still vulnerable to at least the java > > security hole in 4.74 and previous since the java files were not > > updated (and i think that is where the bug lies) > > > hmm. Okay. There was a java symlink in the directory where the binary > was located. I recreated it, this time pointing it to the jave > directory for the 4.75 version. You wouldn't happen to know where one > might test for this vulnerability or find info on it? I suppose > netscape's web site might be a good starting place? i think there is a CERT advisory which are usually pretty detailed and useful. otherwise search on bugtraq/securityfocus.com -- Ethan Benson http://www.alaska.net/~erbenson/
Attachment:
pgpx5_6Y0ZyAP.pgp
Description: PGP signature