security problem with the showDocument method

Michel LIQUIERE (liquiere@lirmm.fr)
Mon, 22 Mar 1999 16:26:38 +0100

Message-Id: <199903221526.QAA14445@lirmm.lirmm.fr>
To: java-security@java.sun.com
Subject: security problem with the showDocument method
Date: Mon, 22 Mar 1999 16:26:38 +0100
From: Michel LIQUIERE <liquiere@lirmm.fr>

Hi,

When i use the Applet method: showDocument with netscape, i can download a file in the
client disk (with an ftp url) without any question. I think that, normally, an applet
cannot change the client disk.

With internet explorer i have a modal dialog asking if i want to dowload the file.
I use the default parameters with netscape and internet explorer, so i think that
netscape is less secure than ie in this case.

With best regards

Michel Liquiere