CVE-2000-0711

2000-10-1304:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.038

Percentile

91.9%

JSON

Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim’s system via a malicious applet, as demonstrated by Brown Orifice.

References

www.cert.org/advisories/CA-2000-15.html

www.securityfocus.com/bid/1545

www.securityfocus.com/templates/archive.pike?list=1&msg=20000805020429.11774.qmail%40securityfocus.com

www.securityfocus.com/templates/archive.pike?list=1&msg=3999922128E.EE84TAKAGI%40java-house.etl.go.jp