Spoofing allows a malicious Web page author to present Web content under a false designation. Communicator's frame-spoofing bug let Web authors insert their own frame--a sort of window within a window--into the pages of trusted third-party sites. Microsoft also grappled with frame-spoofing issues last month.
As with frames, Microsoft dealt with a window-spoofing problem last month.
The current problem was discovered by Bulgarian bug hunter Georgi Guninski, who posted a demonstration of the exploit to the Web. Netscape noted that no users have reported falling victim to such an exploit and that the company would fix the bug in a March release of the browser.