CVE-2002-1204

CVE-2002-1204 affects Netscape Communicator 4.x. The vulnerability allows an attacker to steal a user’s preferences (e.g., URL history, e‑mail address, and potentially the e‑mail password) by redefining the user_pref() function and reading prefs.js, which is stored in a directory with a predictab...

CVE-2002-1204

Netscape Communicator 4.x allows attackers to use a link to steal a user's preferences, including potentially sensitive information such as URL history, e-mail address, and possibly the e-mail password, by redefining the userpref function and accessing the prefs.js file, which is stored in a...

Symantec Java! JustInTime Compiler 210.65 - Command Execution

source: https://www.securityfocus.com/bid/6222/info A vulnerability has been discovered in the Java! JustInTime compiled used by Netscape Communicator, related to the generation of Intel instructions from specially constructed Java bytecode. If a malicous applet is compiled by the vulnerable...

CVE-2000-0087

CVE-2000-0087 affects Netscape Communicator’s Mail Notification (nsnotify) utility. The issue arises from using IMAP without SSL even when the user configures SSL for Communicator, enabling a remote attacker to sniff usernames and passwords in plaintext. The description documents the vulnerable c...

Netscape 4.x/6.x / Mozilla 0.9.x - Malformed Email POP3 Denial of Service

// source: https://www.securityfocus.com/bid/5002/info The Netscape Communicator and Mozilla browsers include support for email, and the ability to fetch mail through a POP3 server. Both products are available for a range of platforms, including Microsoft Windows and Linux. Under some...

CVE-2001-0596

Netscape Communicator prior to 4.77 is affected by CVE-2001-0596: a GIF image whose comment contains Javascript allows remote code execution. The underlying issue is improper handling/escaping of GIF comments, enabling arbitrary Javascript execution via the about: protocol or image viewing contex...

CVE-1999-1226

CVE-1999-1226 affects Netscape Communicator 4.7 and earlier. The vulnerability allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key. The connected sources do not provide concrete exploit code or in-the-wild details. Affected com...

CVE-2001-0596

Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF image whose comment contains the Javascript...

CVE-1999-1226

Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key...

CVE-1999-1226

Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key...

CVE-1999-1357

CVE-1999-1357 affects Netscape Communicator 4.04–4.7 on UNIX, where 0x8b is mapped to ‘’, enabling cross-site scripting via CGI scripts that fail to filter these characters. The description does not specify affected versions beyond those, nor the root cause beyond character mapping in HTML contex...

CVE-1999-1357

Netscape Communicator 4.04 through 4.7 and possibly other versions in various UNIX operating systems converts the 0x8b character to a "" sign, which could allow remote attackers to attack other clients via cross-site scripting CSS in CGI programs that do not filter these characters...

CVE-1999-1357

Netscape Communicator 4.04 through 4.7 and possibly other versions in various UNIX operating systems converts the 0x8b character to a "" sign, which could allow remote attackers to attack other clients via cross-site scripting CSS in CGI programs that do not filter these characters...

CVE-2001-0596

Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF image whose comment contains the Javascript...

Netscape 4.76 gif comment flaw

Product: Netscape Navigator/Communicator Tested on: 4.76 on Linux and Win98/NT Vendor Contact: Reported 2001-03-22 Problem -------------------------------------------------------- - Overview: The Netscape browser does not escape the gif file comment in the image information page. This allows...

AOL Instant Messenger 3.5.18564.04.1.20104.2.1193 - aim: Remote Buffer Overflow

AOL Instant Messenger 3.5.18564.04.1.20104.2.1193 - aim: Remote Buffer Overflow source: https://www.securityfocus.com/bid/2118/info AOL Instant Messenger AIM is a real time messaging service for users that are on line. When AOL Instant Messenger is installed, by default it configures the system s...

Linux news 27.10.00

В продаже коробочные Linux-приложения Если большинство компаний, создающих Linux-ПО, нацелено на рынок серверных систем, то Chilliware кинулась в омут неизведанного настольного бизнеса. Подробнее: http://www.zdnet.ru/news.asp?ID=1910 Вышел Netscape Communicator 4.76 Вышла новая версия, за номером...

CVE-2000-0711

Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice...

CVE-2000-0676

Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice...

CVE-2000-0655

CVE-2000-0655 affects Netscape Communicator 4.73 and earlier. The vulnerability allows remote attackers to cause a denial of service or execute arbitrary commands through a JPEG image containing a comment with an illegal field length of 1. The connected documents corroborate the affected software...