Date: 07/11 5:28 PM
Received: 07/11 5:37 PM
From: Evan Fletcher, cyberham@cvfn.org
To: news@webintosh.com
IE 3.01 PPC is imune, if anyone is interested.
Date: 07/11 2:49 PM
Received: 07/11 4:35 PM
From: Mark C. Corsi, mcorsi@metatron.claremont.ca.us
To: news@webintosh.com
Hi!
Just want to let you know that the JavaScript Security Hole does seem to affect the 68K version of Navigator 3.02. The tracking log on the demonstration page correctly listed the URLs of all subsequent pages I visited. A tiny window called "Infect" was created and listed in the Window menu of Navigator. Resizing this window caused Navigator to crash with a Type 2 error.
I'm running Navigator 3.02 with both Java and JavcaScript enabled on a Macintosh IIci running System 7.5.5. Network connectivity is provided by Open Transport 1.1.2 and an Ascend Pipeline 50 ISDN modem connected via ethernet.
Date: 07/11 11:54 AM
Received: 07/11 1:24 PM
From: Dori Smith, dori@workbook.com
To: news@webintosh.com
FWIW...
Using Communicator 4.01, it wasn't able to track anything I was doing.
Date: 07/10 3:22 PM
Received: 07/10 4:50 PM
From: IndigoVic@aol.com
To: news@webintosh.com
I followed the link on your demonstration of the JavaScript security flaw, and was successfully tracked. I was using Navigator 3.02, with Javascript (but not Java) enabled, on Mac OS 7.6.1. It correctly logged the links I visited, and the forms on each page.
Date: 07/10 3:14 PM
Received: 07/10 4:15 PM
From: Craig Rumpel, car6m@virginia.edu
To: news@webintosh.com
The JavaScript security breach DOES affect Macintosh users of Netscape Navigator Gold (3.0.1/128-bit version). The demonstration page linked to on your News page creates a tiny window named "Infect" and the tracking log linked to on the demonstration page does indeed show every URL visited after you leave the site. It also quite accurately captured the form field contents for a quick search of Apple's tech info library. Very scary.
[an error occurred while processing this directive]