Netscape Navigator/Communicator Problems

@ Compupolis

My Sites

Visitors:

For More Information:

All users should download the most current version of Netscape's browsers. At the time this page was last updated, the current versions were 3.04, 4.08, and 4.5. As Netscape has stopped making new versions of 3.x, 3.x users should probably upgrade to 4.08 or 4.5 to protect against security problems. Since I am presently unable to update this page immediately after every problem and/or fix is announced, Netscape's Security Notes web page may have new or updated information beyond what is listed here.

The Problem List

Date	Versions Affected	Fixed Version	Description	Info
Oct. 29, 1998	4.5	none	Back button allows access to secure pages still in cache	No-Cache Meta Tag
Oct. 29, 1998	4.0-4.07, 4.5	None	Javascript allows remote site access to browser cache and cookies	JavaScript Cache Browsing
Oct. 21, 1998	4.0-4.07	4.5	Javascript allows remote site access to local disk filenames	Injection Bug Info
Oct. 6, 1998	3.x,4.0-4.06	4.5	remote site can read URLs from your browser cache	Brumleve Cache
Sept. 30, 1998	4.0-4.06	4.07	Javascript allows remote site access to your browser cache	Info #1 Info #2
July 27, 1998	4.0-4.05, 4.5PR1	4.06	e-mail attachments with long filenames can cause crash	Info
July 17, 1998	4.0-4.05	4.5 PR1	Java applet can disable browser's security controls	For More Info
Feb. 19, 1998	4.0-4.04	4.05	preferences file can be read by remote site	Preferences
Sep. 15, 1997	4.0-4.02	4.03	preferences file can be read by remote site	French
Aug. 29, 1997	4.0-4.02	4.03	remote site can see user activity in second window	Santa Barbara
Aug. 4, 1997	2.0-3.02	3.03	cookie or form submissions can be retrieved by remote site	Tracker
Jul. 25, 1997	4.0-4.02	4.03	user activity can be observed by remote site	Singapore
Jul. 18, 1997	2.0-4.01	4.02	cookie or form submissions can be retrieved by remote sites	Bell Labs
Jul. 9, 1997	2.0-4.0	3.02, 4.01	files can be secretly uploaded to remote site	Update