Filtered by vendor Netscape
Subscribe
Total
120 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0043 | 6 Bsdi, Caldera, Isc and 3 more | 7 Bsd Os, Openlinux, Inn and 4 more | 2023-12-10 | 10.0 HIGH | N/A |
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others. | |||||
CVE-1999-1005 | 2 Netscape, Novell | 2 Enterprise Server, Groupwise | 2023-12-10 | 5.0 MEDIUM | N/A |
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter. | |||||
CVE-1999-0869 | 2 Microsoft, Netscape | 2 Internet Explorer, Navigator | 2023-12-10 | 2.6 LOW | N/A |
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing. | |||||
CVE-1999-0752 | 1 Netscape | 1 Enterprise Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake. | |||||
CVE-2002-1091 | 3 Mozilla, Netscape, Opera Software | 3 Mozilla, Navigator, Opera Web Browser | 2023-12-10 | 7.5 HIGH | N/A |
Netscape 6.2.3 and earlier, and Mozilla 1.0.1, allow remote attackers to corrupt heap memory and execute arbitrary code via a GIF image with a zero width. | |||||
CVE-1999-0537 | 2 Microsoft, Netscape | 2 Internet Explorer, Communicator | 2023-12-10 | 7.5 HIGH | N/A |
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc. | |||||
CVE-2004-0722 | 2 Mozilla, Netscape | 2 Mozilla, Navigator | 2023-12-10 | 10.0 HIGH | N/A |
Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code. | |||||
CVE-1999-1226 | 1 Netscape | 1 Communicator | 2023-12-10 | 2.6 LOW | N/A |
Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key. | |||||
CVE-1999-1189 | 1 Netscape | 2 Communicator, Navigator | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? character in a URL that references an .asp, .cgi, .html, or .pl file. | |||||
CVE-2004-0718 | 3 Firebirdsql, Mozilla, Netscape | 3 Firebird, Mozilla, Navigator | 2023-12-10 | 7.5 HIGH | N/A |
The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability. | |||||
CVE-1999-1262 | 1 Netscape | 1 Communicator | 2023-12-10 | 5.1 MEDIUM | N/A |
Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers to conduct unauthorized activities. | |||||
CVE-1999-1002 | 1 Netscape | 1 Communicator | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape Navigator uses weak encryption for storing a user's Netscape mail password. | |||||
CVE-1999-0045 | 2 Apache, Netscape | 4 Http Server, Commerce Server, Communications Server and 1 more | 2023-12-10 | 7.5 HIGH | N/A |
List of arbitrary files on Web host via nph-test-cgi script. | |||||
CVE-1999-0142 | 2 Netscape, Sun | 2 Navigator, Java | 2023-12-10 | 7.5 HIGH | N/A |
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts. | |||||
CVE-1999-0751 | 1 Netscape | 1 Enterprise Server | 2023-12-10 | 5.0 MEDIUM | N/A |
Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch. | |||||
CVE-1999-0440 | 2 Netscape, Sun | 3 Communicator, Navigator, Java | 2023-12-10 | 7.5 HIGH | N/A |
The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages. | |||||
CVE-2002-0594 | 3 Galeon, Mozilla, Netscape | 3 Galeon Browser, Mozilla, Navigator | 2023-12-10 | 5.0 MEDIUM | N/A |
Netscape 6 and Mozilla 1.0 RC1 and earlier allows remote attackers to determine the existence of files on the client system via a LINK element in a Cascading Style Sheet (CSS) page that causes an HTTP redirect. | |||||
CVE-2003-0553 | 1 Netscape | 1 Navigator | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in the Client Detection Tool (CDT) plugin (npcdt.dll) for Netscape 7.02 allows remote attackers to execute arbitrary code via an attachment with a long filename. | |||||
CVE-2001-0164 | 1 Netscape | 1 Directory Server | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in Netscape Directory Server 4.12 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed recipient field. | |||||
CVE-2003-1419 | 1 Netscape | 1 Navigator | 2023-12-10 | 4.3 MEDIUM | N/A |
Netscape 7.0 allows remote attackers to cause a denial of service (crash) via a web page with an invalid regular expression argument to the JavaScript reformatDate function. |