Netscape Communications today acknowledged a bug in its
Navigator browser that could make users on the Unix operating
system vulnerable to attack.
The present bug allows a malicious programmer to flood the
browser’s MIME-type memory and cause the application to crash.
Brumleve suggests that malicious code could then be caused to run
on the victim’s computer, but Netscape said no such exploit has
been demonstrated.
The attack is launched when the user tries to download an
attacker’s plug-in.