A newly publicised flaw in Mozilla-based Web browsers allows servers to discover where visitors go after they leave the site
Netscape and other Web browsers based on the Mozilla development project contain a bug that leaks users" Web surfing data, according to a new report.
The bug reveals the URL of the page a user is viewing to the Web server of the site visited last. This allows a Web server to track where users go after they leave the site, even if the next Web address comes from a bookmark or is manually typed into the browser.
Researcher Sven Neuhaus, who published a security alert about the issue to the Bugtraq mailing list on Wednesday, said he had confirmed the bug in Mozilla 1.0, 1.0.1 and 1.1, though it probably also exists in older Mozilla versions. It also appears in browsers based on Mozilla"s technology, including Netscape 7 and Galeon, a Linux application, he said.