Sign up for the Security newsletter

Netscape hit by hot-desking security hole

By Dominic Maher on 29 October 1998 00:25

NEWS Netscape has confirmed that a bug in Navigator 4.5 can lead to security breaches when used in hot-desking environments. The bug was discovered by Peter Snow, a support engineer at Yale University, and could allow a user to access credit card details of another person who shares the same PC. The problem arises from the way Navigator negotiates an HTML caching meta tag. The tag tells the server not to cache the page, so although Navigator obeys by not caching the information to the hard disk, it still copies it to the memory cache. From there, the information can be readily retrieved according to Snow. Netscape UK was unable to comment on the issue, but US reports claim the problem will be corrected in the next version of product.

Post your comment

In order to post a comment you need to be registered and logged in.

You can also log in with Facebook. Log in or create your silicon.com account below

  • Login

Will not be displayed with your comment

By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy.

Questions about membership? Find the answers in the Membership FAQ

Get silicon.com's daily newsletter

  • Register on silicon.com

    Enter your email to register

Keep in touch with silicon.com

silicon.com newsletters