MediumNetscape Communicator could allow a malicious Web site operator to access data on a visiting user’s computer. The Netscape Navigator fails to properly escape Graphic Interchange Format (GIF) file comments in the image information page. A malicious Web site operator could exploit this vulnerability by inserting JavaScript in the GIF file comments to upload information from a visiting user’s computer to the Web server. An attacker can use this vulnerability to gain access to sensitive information, including the browser history.
Upgrade to the latest version of Netscape Communicator (4.77 or later), available from the Netscape Web site. See References.
For Red Hat Linux 6.2:
Upgrade to the latest version of Netscape (4.77-0.6.2 or later), as listed in RHSA-2001:046-05. See References.
For Red Hat Linux 7.0 and 7.1:
Upgrade to the latest version of Netscape (4.77-1 or later), as listed in RHSA-2001:046-05. See References.
For Immunix OS 6.2:
For Immunix OS 7.0-beta and 7.0:
Upgrade to the latest version of Netscape (4.77-1 or later), as listed in Immunix OS Security Advisory IMNX-2001-70-014-01. See References.
For Progeny Debian:
Upgrade to the latest version of Netscape (4.77-1progeny2 or later), as listed in Progeny Linux Systems -- Security Advisory PROGENY-SA-2001-07. See References.
For Conectiva Linux 4.0, 4.0es, 4.1, 4.2, 5.0, prg graficos, ecommerce, 5.1, 6.0:
Upgrade to the latest version of Netscape (4.77-1cl or later), as listed in Conectiva Linux Security Announcement CLA-2001:393. See References.
For Debian 2.2 potato:
Upgrade to the latest version of Netscape (4.77-1 or later), as listed in DSA 051-1. See References.
For FreeBSD Ports Collection (prior to 2001-04-07):
Upgrade to the latest Netscape port version (4.77 or later), as listed in FreeBSD Inc., Security Advisory FreeBSD-SA-02-16. See References.
For other distributions:
Contact your vendor for upgrade or patch information.
BugTraq Mailing List, Mon Apr 09 2001 - 06:48:26 CDT
Netscape 4.76 gif comment flaw
http://archives.neohapsis.com/archives/bugtraq/2001-04/0125.html
RHSA-2001:046-05
New netscape packages available
http://rhn.redhat.com/errata/RHSA-2001-046.html
Netscape Communications, Inc. Web site
Netscape Products
http://home.netscape.com/download/index.html?cp=djuc1
Immunix OS Security Advisory IMNX-2001-70-014-01
netscape
http://archives.neohapsis.com/archives/linux/immunix/2001-q2/0007.html
Progeny Linux Systems Security Advisory PROGENY-SA-2001-07
Netscape Navigator fails to protect privacy
http://lists.progeny.com/archive/progeny-security-announce/2001/msg00009.html
Conectiva Linux Announcement CLSA-2001:393
netscape
http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000393
DSA-051-1
New Netscape packages available
http://www.debian.org/security/2001/dsa-051
FreeBSD Security Advisory FreeBSD-SA-02-16
GIF/JPEG comment vulnerability in Netscape
http://archives.neohapsis.com/archives/freebsd/2002-03/0147.html
ISS X-Force
Netscape embedded JavaScript in GIF file comments can be used to access remote data
http://www.iss.net/security_center/static/6344.php
CVE CVE-2001-0596
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0596
