322 matches found
CVE-1999-0809
Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page being viewed"...
CVE-1999-0762
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information...
CVE-1999-0685
CVE-1999-0685 describes a buffer overflow in Netscape Communicator triggered by EMBED tags in the pluginspage option. The affected product is Netscape Communicator; the vulnerability concerns the plugin-related EMBED handling path, with the root cause identified as a buffer overflow. Practical im...
CVE-1999-0762
The CVE-1999-0762 issue involves Netscape Communicator where JavaScript embedded in the TITLE tag can cause the browser to leak information via the about protocol, enabling a remote attacker to access browser information. The description and connected records consistently describe this vulnerabil...
CVE-1999-0809
CVE-1999-0809 affects Netscape Communicator 4.x with Javascript enabled, where the browser does not warn users about cookie settings even when the user has selected 'Only accept cookies originating from the same server as the page being viewed'. Relevant connected sources (Red Hat, NVD/NIST, CVE ...
CVE-1999-0892
Summary (CVE-1999-0892) : The vulnerability affects Netscape Communicator prior to version 4.7, where a buffer overflow can occur when processing a dynamic font whose length field is smaller than the actual font size. The PT-1999-1440 source corroborates Netscape Communicator versions before 4.7 ...
CVE-1999-0892
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font...
Netscape Communicator 4.5 - prefs.js Buffer Overflow
Netscape Communicator 4.5 - prefs.js Buffer Overflow // source: https://www.securityfocus.com/bid/893/info Netscape Communicator 4.5 has an unchecked buffer, through which code can be injected for execution via the prefs.js preferences file. This could be exploited locally to run arbitrary code a...
PT-1999-1440 · Netscape · Netscape Communicator
Name of the Vulnerable Software and Affected Versions: Netscape Communicator versions prior to 4.7 Description: The issue is related to a buffer overflow that can occur in Netscape Communicator when handling a dynamic font. Specifically, the problem arises when the length field of the font is les...
Netscape Communicator 4.5 - prefs.js Buffer Overflow
// source: https://www.securityfocus.com/bid/893/info Netscape Communicator 4.5 has an unchecked buffer, through which code can be injected for execution via the prefs.js preferences file. This could be exploited locally to run arbitrary code at the privilege level of the current user. The buffer...
CVE-1999-1226
Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key...
CVE-1999-1357
Netscape Communicator 4.04 through 4.7 and possibly other versions in various UNIX operating systems converts the 0x8b character to a "" sign, which could allow remote attackers to attack other clients via cross-site scripting CSS in CGI programs that do not filter these characters...
netscape4.x_bof.txt
Subject: Re: Netscape communicator 4.06J, 4.5J-4.6J, 4.61e Buffer Overflow To: [email protected] Hello David Parker$B!!Bwrites: I tried the 4 exploit test links, and they all crashed Netscape but didn't cause any bluescreens or run any programs. I have win98, Netscape 4.5 128-bit, and the...
Microsoft Internet Explorer 5 Netscape Communicator 4.04.54.6 - JavaScript STYLE
Microsoft Internet Explorer 5 Netscape Communicator 4.04.54.6 - JavaScript STYLE Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Netscape Communicator 4.0/4.5/4.6 Javascript STYLE Vulnerability source: https://www.securityfocus.com/bid/630/info The HTML STYLE...
Microsoft Internet Explorer 5 / Netscape Communicator 4.0/4.5/4.6 - JavaScript STYLE
Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Netscape Communicator 4.0/4.5/4.6 Javascript STYLE Vulnerability source: https://www.securityfocus.com/bid/630/info The HTML STYLE command can be used to embed Javascript into Hotmail email messages. The STYLE tag...
CVE-1999-0685
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option...
Netscape Communicator 4.064.54.64.514.61 - EMBED Buffer Overflow
Netscape Communicator 4.064.54.64.514.61 - EMBED Buffer Overflow / source: https://www.securityfocus.com/bid/618/info In several versions of Netscape Communicator, there is an unchecked buffer in the code that handles EMBED tags. The buffer is in the 'plugins page' option. This vulnerability can ...
Netscape Communicator 4.06/4.5/4.6/4.51/4.61 - EMBED Buffer Overflow
/ source: https://www.securityfocus.com/bid/618/info In several versions of Netscape Communicator, there is an unchecked buffer in the code that handles EMBED tags. The buffer is in the 'plugins page' option. This vulnerability can be exploited by a malicious webpage. / // /Netscape communicator...
browser.bookmarks.txt
Date: Sun, 9 May 1999 17:34:10 +0300 From: Georgi Guninski To: [email protected] Subject: Bookmarks security vulnerabilities in both Internet Explorer 5.0 and Netscape Communicator 4.51 Win95 There is a design flaw in both Internet Explorer 5.0 and Netscape Communicator 4.51 Win95 guess all 4....
netscape.viewtrack.txt
Date: Sun, 6 Jun 1999 13:15:08 +0300 From: Georgi Guninski To: [email protected] Subject: Netscape Communicator code injection in JavaScript console using "view-source:" protocol There is a bug in Netscape Communicator 4.6 Win95, 4.07 Linux probably all 4.x are affected, which allows sniffing...