On Friday 04 January 2002 03:34 pm, Dan Trainor wrote:
> Does this alarm anyone else? How will AOL fix this problem without
> making users download any patches / fixes? Are they going to install it
> themselves? If so, if they can fix this problem by installing a fix on
> to your machine, what's stopping a malicious user from installing
> something else on your machine?
>
> If I am misunderstanding how this latest vulnerability works, I do
> apologize for this "junk" mail. :)
>
>
> -dt
they fixed the issue on their servers, so clients dont need to update,
allthough there will likely be a client-side solution for the issue in their
next release. They also fixed the issue in about a day, which is very very
fast for closed source products.
