Lucene search

[email protected]CVE-1999-1262

HistoryAug 01, 1997 - 4:00 a.m.

CVE-1999-1262

1997-08-0104:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

netscape 4.5

java security model

unauthorized access

remote attackers

nvd.

7.5 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.4%

JSON

Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers to conduct unauthorized activities.

CPENameOperatorVersion
netscape:communicatornetscape communicatoreq4.07
netscape:communicatornetscape communicatoreq4.06
netscape:communicatornetscape communicatoreq4.01
netscape:communicatornetscape communicatoreq4.08
netscape:communicatornetscape communicatoreq4.5

CPE	Name	Operator	Version
netscape:communicator	netscape communicator	eq	4.07
netscape:communicator	netscape communicator	eq	4.06
netscape:communicator	netscape communicator	eq	4.01
netscape:communicator	netscape communicator	eq	4.08
netscape:communicator	netscape communicator	eq	4.5

References

www.securityfocus.com/archive/1/12231

exchange.xforce.ibmcloud.com/vulnerabilities/1727

7.5 High

AI Score

Confidence

Low

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

74.4%

JSON

Related for CVE-1999-1262

cvelist1