From: moz.champion@sympatico.ca   
      
   Netscape Guy wrote:   
   > "Moz Champion (Dan)" wrote:   
   >   
   >>> But where are the reports of vulnerabilities to Netscape 4.x   
   >>> (or 7.x) during the time-frame when those versions were current?   
   >> Why ask me?   
   >   
   > I'm asking *this newsgroup*.   
   >   
   > I'm asking because there were claims made here that Netscape 4.x has   
   > vulnerabilities.   
   >   
   > You've made the claim that it has *dozens* of vulnerabilities.  Why   
   > are you reluctant to point to a source describing them?   
   >   
   >> Why don't you go to the CERT sites and look them up?   
   >   
   > You could do the same and post the resulting URL's.   
   >   
   >> Why would anyone KEEP such reports when the software is no   
   >> longer supportted?   
   >   
   > Why would anyone get rid of old documents or web-content?   
   >   
   > It costs essentially nothing to archive old material and make them   
   > available on the net.  Be they old usenet postings, old versions of   
   > entire web sites or URL's, etc.   
   >   
   > Your continued references to netscape being out-of-support is   
   > specious.  I am not arguing about or questioning it's support status.   
   >   
   > I am seeking information regarding vulnerabilities it was known to   
   > have - or claimed to have.   
   >   
   >>> So again I ask:   
   >>>   
   >>> What documented e-mail handling or usenet news-reading/posting   
   >>> vulnerabilities does Netscape 4.7x have?   
   >> Dozens of such. Look in the archives for them.   
   >   
   > Your statement is nothing but heresay unless you can provide some   
   > shread of evidence for these vulnerabilities.   
   >   
   > Even just a basic description or title or name of one vulnerability   
   > would provide a starting point for a web search.   
   >   
   >> It is a non-supportted application tho,   
   >> and any vulnerabilities will not be addressed.   
   >   
   > I am not arguing or discussing those points.   
   >   
   > Why do you keep bringing them up?   
   >   
   >> Whether or not they affect Netscape Communicator 4x is unknown,   
   >> because no one is testing it any longer!   
   >   
   > So you are speculating that 4.x has vulnerabilities - as I thought.   
   >   
   > Just a lot of hot air from you.   
      
      
      
   You sir are not worth the time to argue with.   
   I am not going to waste my time in digging through archives to list the   
   vulnerabilities that apply to Netscape 4x, or in testing the new   
   vulnerablities that exist in SeaMonkey or Thunderbird to see if they   
   still apply to Communicator.   
      
      
   Netscape Communicator is a DEAD product. It has been abandoned by it's   
   maker and is no longer supportted by anyone. And that goes for Netscape   
   7x as well.   
      
   If you care to expose yourself to vulnerabilities then carry on and use   
   such products, Netscape 4x and 7x are dead and have no place in a modern   
   security aware users inventory.   
      
   The last release of Netscape Communicator 4x was in 2002, there were no   
   updates for any security concerns discovered after that date. So those   
   security concerns you discoverd at the site are still valid against the   
   product, since they are dated after the last release.   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)