Filtered by vendor Netscape
Subscribe
Total
120 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0892 | 1 Netscape | 1 Communicator | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font. | |||||
CVE-1999-0685 | 1 Netscape | 1 Communicator | 2023-12-10 | 5.1 MEDIUM | N/A |
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option. | |||||
CVE-1999-0479 | 2 Hp, Netscape | 2 Hp-ux, Enterprise Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems. | |||||
CVE-2004-1236 | 1 Netscape | 1 Directory Server | 2023-12-10 | 10.0 HIGH | N/A |
Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allows remote attackers to execute arbitrary code. | |||||
CVE-1999-0425 | 1 Netscape | 1 Communicator | 2023-12-10 | 6.4 MEDIUM | N/A |
talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes. | |||||
CVE-2002-1042 | 2 Netscape, Sun | 4 Enterprise Server, Iplanet Web Server, One Application Server and 1 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter. | |||||
CVE-2000-1075 | 2 Netscape, Sun | 2 Directory Server, Iplanet Certificate Management System | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services. | |||||
CVE-2000-0308 | 2 Netscape, Sco | 4 Enterprise Server, Fasttrack Server, Proxy Server and 1 more | 2023-12-10 | 10.0 HIGH | N/A |
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. | |||||
CVE-1999-0007 | 5 C2net, Hp, Microsoft and 2 more | 13 Stonghold Web Server, Open Market Secure Webserver, Exchange Server and 10 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Information from SSL-encrypted sessions via PKCS #1. | |||||
CVE-2000-0655 | 2 Mozilla, Netscape | 2 Mozilla, Communicator | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1. | |||||
CVE-1999-0012 | 2 Microsoft, Netscape | 5 Frontpage, Internet Information Server, Personal Web Server and 2 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names. | |||||
CVE-2000-1072 | 1 Netscape | 1 Iplanet Ical | 2023-12-10 | 7.2 HIGH | N/A |
iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse. | |||||
CVE-2004-0528 | 1 Netscape | 1 Navigator | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape Navigator 7.1 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack. | |||||
CVE-2000-1187 | 1 Netscape | 2 Communicator, Navigator | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field. | |||||
CVE-2001-0251 | 1 Netscape | 1 Enterprise Server | 2023-12-10 | 5.0 MEDIUM | N/A |
The Web Publishing feature in Netscape Enterprise Server 3.x allows remote attackers to cause a denial of service via the REVLOG command. | |||||
CVE-2001-0745 | 1 Netscape | 1 Messanger | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape 4.7x allows remote attackers to obtain sensitive information such as the user's login, mailbox location and installation path via Javascript that accesses the mailbox: URL in the document.referrer property. | |||||
CVE-2003-1492 | 2 Mozilla, Netscape | 2 Firefox, Navigator | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape Navigator 7.0.2 and Mozilla allows remote attackers to access cookie information in a different domain via an HTTP request for a domain with an extra . (dot) at the end. | |||||
CVE-1999-1532 | 1 Netscape | 1 Messaging Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service (memory exhaustion) via a series of long RCPT TO commands. | |||||
CVE-2002-1766 | 1 Netscape | 1 Communicator | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in Composer in Netscape 4.77 allows local users to overwrite process memory and execute arbitrary code via a font tag with a long face attribute. | |||||
CVE-2000-0517 | 1 Netscape | 1 Communicator | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site's DNS information. |