Error - template LAYOUT-DATA-WRAPPER not found

A configuration error was detected in the CGI script; the LAYOUT-DATA-WRAPPER template could not be found.

Error - template STYLE-SHEET not found

A configuration error was detected in the CGI script; the STYLE-SHEET template could not be found.

Error - template SUB-TOP-BANNER not found

A configuration error was detected in the CGI script; the SUB-TOP-BANNER template could not be found.
Subject:
Netscape virus: Long Filename Mail Vulnerability
From:
George Kaufman <[log in to unmask]>
Reply To:
PCSOFT - Personal Computer software discussion list <[log in to unmask]>
Date:
Sat, 8 Aug 1998 05:55:19 -0400
Content-Type:
text/plain
Parts/Attachments:
text/plain (48 lines) 
Netscape's Security Update suggest the following until they get a working patch
to block the viurs:



Long Filename Mail Vulnerability JULY 27, 1998

    "The Long Filename Mail vulnerability has been identified by a
Finnish            tester at OUSPG and is documented at AUSCERT. It affects the
mail and                 news components of Netscape Communicator 4.0 through
4.05 and                            Netscape Communicator 4.5 Preview Release 1
on the Windows 3.1, 95,              98, and NT platforms. At this time
Netscape does not believe that this                     vulnerability affects
the Macintosh or Unix versions of Communicator.
      Although this vulnerability has been verified by Netscape, no
customer             incidents have been reported to Netscape. Netscape expects
to make                       available a fix for Communicator 4.0x within two
weeks. The Long                        Filename Mail vulnerability could allow
an email or newsgroup message                with an attachment that has a very
long filename to execute malicious                     code on your computer.
In order for the malicious code to cause                             problems,
you must select the File menu while viewing the message."

  Description of the Vulnerability
      The Long Filename Mail vulnerability can cause one or more of
the                  following to occur when you select the File menu while
viewing a message that has an attachment with a long filename: Communicator may
quit unexpectedly.              Selecting the File menu may cause malicious
code to be executed                            on your computer. Netscape is
not aware of any users who have                               been affected by
a malicious message.

 How to Avoid the Vulnerability
     Until a patch is available, configure Communicator to always
view                    attachments as links, rather than display them inline.
To do so, select the                 appropriate command on the View menu.

  In Communicator 4.0 through 4.05, select View: Attachments:
As                         Links. In Communicator 4.5 Preview Release 1, if
your menu reads View:              View Attachments Inline, select this item to
toggle it to viewing                            attachments as links."

A major ne problem I have with their suggestions is that I dont have a "View
Attachments Inline" on my View menus.  Any ideas about how to handle this until
the patch becomes available?

George Kaufman

ATOM RSS1 RSS2

LISTSERV.ICORS.ORG Secured by F-Secure Anti-Virus CataList Email List Search Powered by LISTSERV