CVE-2008-5181

CVE-2008-5181 affects Microsoft Communicator. It enables remote attackers to cause a denial of service (application or device outage) by sending instant messages containing large numbers of emoticons. The vulnerability is network-exposed, requires no authentication, and results in partial loss of...

CVE-2008-5180

Microsoft Communicator and the Communicator component in Office 2010 beta are affected by CVE-2008-5180. The vulnerability allows remote attackers to cause a denial of service (memory consumption) by sending a large number of SIP INVITE requests, which triggers the creation of many sessions. The ...

PT-2008-6324 · Microsoft · Ge Communicator +1

Name of the Vulnerable Software and Affected Versions: Microsoft Communicator affected versions not specified Microsoft Office 2010 beta affected versions not specified Description: The issue allows remote attackers to cause a denial of service, resulting in memory consumption, via a large number...

Design/Logic Flaw

Symbian OS S60 3rd edition on the Nokia E90 Communicator 07.40.1.2 Ra-6 and Nseries N82 allows remote attackers to cause a denial of service device crash via multiple deauthentication DeAuth frames...

Nokia E90 Communicator远程拒绝服务漏洞

BUGTRAQ ID: 31175 CNCAN ID：CNCAN-2008091605 Nokia E90 Communicator是一款诺基亚开发的手机设备。 Nokia E90 Communicator设备不正确处理畸形数据，远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 成功利用此漏洞允许远程攻击者使设备崩溃，此问题影响运行Symbian OS S60第三版本俄难得Nokia E90 Communicator设备。 Nokia E90 Communicator 目前没有解决方案提供: http://europe.nokia.com/e90 aireplay-ng -0 10 -a...

Microsoft Office不安全文档签名漏洞

Microsoft Office 2007是一款微软开发的流行的办公处理应用程序。 Microsoft Office 2007不安全对基于XML文档的签名，远程攻击者可以利用漏洞伪造签名，使目标用户盲目信任文档。 Microsoft Office文档根据文件中docProps/core.xml的DublinCore metadata来携带META数据信息，在这些META数据信息中"LastModifiedBy", "creator"字段可通过"Office Button - Prepare -...

CVE-2002-2338

The CVE-2002-2338 issue affects the POP3 client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier. A remote attacker can trigger a denial of service (no new mail) by sending a mail message containing a dot (.) at a newline, which is treated as the end of the message. The root ...

CVE-2002-2308

Technical details (affected products, versions, root cause, impact, or fixes) are not publicly available in the provided connected documents. Monitor for updates.

CVE-2002-2308

Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage containing a recursive META refresh tag where the content tag is blank and the URL tag references itself...

CVE-2002-2281

Technical details about CVE-2002-2281 are not publicly available in the provided connected documents. Monitor for updates from authoritative sources.

CVE-2002-2284

The CVE-2002-2284 entry concerns Netscape Communicator 4.0–4.79, where an applet loading user-supplied Java classes can bypass the JVM security model and allow remote arbitrary Java code execution. The vulnerability affects the applet/JVM interaction and is exploitable via a remote attacker, as i...

CVE-2002-2281

Symantec Java! JIT Just-In-Time Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler...

CVE-2002-2284

Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in 1 PreSearch.html and 2 PreSearch.class in Cisco Secure Access Control Server ACS, VPN Client, Unified Personal Communicator, MeetingPlace, Unified MeetingPlace, Unified MeetingPlace Express, CallManager, IP Communicator, Unified Video Advantage...

Critical: Red Hat Security Advisory: Netscape security update

Netscape Navigator and Netscape Communicator 4.8 as distributed with Red Hat Enterprise Linux 2.1 contain security flaws and should not be used. Netscape Navigator and Netscape Communicator have been removed from the Red Hat Enterprise Linux 2.1 CD-ROM distribution as part of Update 5. These...

CVE-2002-2284

Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes...

CVE-2002-2338

The POP3 mail client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier, allows remote attackers to cause a denial of service no new mail via a mail message containing a dot . at a newline, which is interpreted as the end of the message...

CVE-2002-2308

Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage containing a recursive META refresh tag where the content tag is blank and the URL tag references itself...

CVE-2002-1204

Netscape Communicator 4.x allows attackers to use a link to steal a user's preferences, including potentially sensitive information such as URL history, e-mail address, and possibly the e-mail password, by redefining the userpref function and accessing the prefs.js file, which is stored in a...

[LSD] Java and JVM security vulnerabilities

We would like to inform you about several security vulnerabilities in Java Virtual Machine implementations that we have found during our research. These vulnerabilities affect at least JVMs used in Netscape Communicator and Microsoft Internet Explorer web browsers. Below you can find their brief...