This page demonstrates a potential security hole in Netscape Communicator 4.x for Windows. By filling out the disclaimer below and clicking "submit", you will cause your c:\windows\win.ini file to be uploaded to this server and mailed to bennett@peacefire.org. (The exploit could easily be modified to make it possible to read any other file from a user's hard drive, as long as the page author knew the path to the file in advance.) While your win.ini file almost certainly does not contain any confidential personal information, you should at least be aware that this will happen. (In other words, the text below saying "you must type this disclaimer in order to see a demonstration" is just a trick -- this page is the demonstration.)

If you'd like to know more about Peacefire, an an organization supporting free speech for teenagers on the Internet, visit our main page.

This security hole can only be demonstrated to licensed Windows users.

In order to verify that you are a licensed Windows user, you must
type the following string, exactly as it is written, into the
text box. The string must be typed correctly the first time
without making any mistakes -- backspace will not work.

Click here to start over if you made any typing errors