Netscape update on their web site

Robert Watson (robert@FLEDGE.WATSON.ORG)
Fri, 13 Jun 1997 10:22:06 -0400

Sounds like extortion to me...

URL: http://home.netscape.com/misc/security_update.html

A potential security bug may exist in beta versions of Netscape
Communicator and 3.x versions of Netscape Navigator. Netscape knows of no
reports of successful exploitation of this potential bug, and no customer
incidents have been reported.

Technical details of the potential bug have not been disclosed to Netscape
or the general public by the Internet Consultant from Denmark. Netscape's
engineers have attempted on numerous occasions to obtain technical details
of the potential problem from the Internet Consultant from Denmark through
direct phone and email contact, but without success. Based on the
information available, Netscape believes that the potential impact of this
bug on users is limited due to the lack of public knowledge of how to
replicate the bug. News reports have also indicated that in order to take
advantage of the bug, a Web page author would not only need to obtain and
understand the undisclosed details of the bug but would also need to
obtain specific filenames from users' computers.

The Internet Consultant from Denmark did disclose some technical details
of the potential bug to specific members of the media. Netscape is working
closely with those involved to uncover any technical details that might
help in the investigation and verification of this potential problem.
Netscape plans to continue vigorously pursuing validation of this
potential bug and will develop a fix if necessary. Netscape will keep its
customers and partners updated frequently about this issue through the
Netscape home page.