A bug, allowing attackers to take full control of machines running Netscape Enterprise or FastTrack, has recently been fixed by Netscape and security experts Internet Security Systems, with the patch posted to Netscape's security Web site iPlanet.

The director of ISS, Christopher Rouland, suggested that an attacker "could do whatever he wants to the server. He can launch a virus or open an account without a password," manipulating a buffer overflow quirk by sending a Web address with more characters than a machine could handle.

Those seeking the Enterprise 3.6 SP 2 SSL Handshake fix can visit the details page on iPlanet here.