Silicon Investor (SI) -- The First Internet Community

STOCKTALK

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor. We ask that you disable ad blocking while on Silicon Investor in the best interests of our community. If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.

Pastimes : Grinders and Gripers Coffee Shop -- Ignore unavailable to you. Want to Upgrade?

To: Savant who wrote (2666)	10/12/1998 12:02:00 AM
From: The Osprey	Respond to of 4201

Excellent.They should have a 13th month and call it "Remember".I do every month since I bought MMR.

To: Savant who wrote (2666)	10/12/1998 1:48:00 AM
From: Apex	Read Replies (1) \| Respond to of 4201

Savvy: ...noble words from a noble man. Now, do I return all of my investing books bought last Saturday?...lol I'll keep all of the internet magazines, since they are a hard copy of what is already available on the net. Apex

To: Savant who wrote (2666)	10/13/1998 1:08:00 AM
From: Apex	Read Replies (1) \| Respond to of 4201

Browser Security Flaws (NETSCAPE and IE): Borrowed from Cheeky Kid #reply-5994992 ===================== Netsacpe flaws: shout.net (Partial write up below) "Son of Cache-Cow" Netscape Vulnerability I've discovered yet another Netscape security hole. It appears to affect all versions of Communicator, including 4.07 which was just released to plug Cache-Cow. The problem is that it's still possible to inject foreign JavaScript code into arbitrary documents. This has numerous evil applications. To illustrate some of them, I've written four exploitative programs. Follow the links to see the program source. cookie-monster.cgi will steal cookies from arbitrary locations; this is very bad since cookies have been widely deployed for authentication purposes. The script will prompt you for a URL, and retrieve all cookies issued to you by that site. file-list.cgi will steal the contents of a local directory on your hard drive. The script will prompt you for a directory name, and retrieve the names of all the files contained it. file-list-old.cgi is a version of file-list.cgi modified to work on Netscape 4.01. cache-cow-4.07.cgi will steal the contents of your cache. It has precisely the same effect as the exploit announced last week. ...etc. ===================== MS IE Explorer flaws: pages.whowhere.com (Partial write up below) Cuartango security Hole Affected software Microsoft Internet Explorer 4 Microsoft Internet Explorer 5 Preview I have not tested this IE 5 vulnerability but Chris Gayler of EngelSoft has sent me a note reporting IE 5 is also affected. Fixes Microsoft is thinking about. A hotfix will be released in the next few days. In the meantime I suggest you to listen this nice spanish music from the XVII century I have MIDI-coded for your entertainment. Risks Major : Your computer files can be sent to a WEB site by a malicious Script (if the file name is known). Minor : The content of the clipboard can also be sent. ...etc.