From cert-advisory@cert.org Sat Feb  5 03:52:04 2000
From: CERT Advisory <cert-advisory@cert.org>
Resent-From: mea culpa <jericho@dimensional.com>
To: cert-advisory@cert.org
Resent-To: jericho@attrition.org
Date: Fri, 4 Feb 2000 17:20:04 -0500 (EST)
Reply-To: cert-advisory-request@cert.org
Subject: Updates to CERT Advisory CA-2000-02


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The CERT Coordination Center has released updates to CERT Advisory
CA-2000-02 and the FAQ About Malicious Web Scripts Redirected by Web
Sites which clarifies the impact this vulnerability has on Java. These
documents are available at

	http://www.cert.org/advisories/CA-2000-02.html
	http://www.cert.org/tech_tips/malicious_code_FAQ.html
	
Of special note is the newly-added question about disabling Java,
available at 

	http://www.cert.org/tech_tips/malicious_code_FAQ.html#java

We encourage you to read this new information carefully. 

For additional information about Java, you may also wish to visit

	http://java.sun.com/sfaq

Our thanks to James Gosling and Gary Ellison of Java Software, Sun
Microsystems for their help in producing these updates.


-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv

iQA/AwUBOJtEM1r9kb5qlZHQEQJfegCeM1YoHHhstmN8I4gMBecd+FsQHd4AoNS+
TeaYF2XzxPb0ijR9PCOFjDER
=u5zM
-----END PGP SIGNATURE-----