Communicator@4.04 Security Vulnerabilities and Issues — Communicator@4.04 CVE List

Lucene search

NetscapeCommunicator4.04

3 matches found

CVE•added 2000/10/20 4:0 a.m.•46 views

CVE-2000-0711

Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice.

7.5CVSS7AI score0.06754EPSS

CVE•added 2001/09/12 4:0 a.m.•34 views

CVE-1999-1357

Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.

7.5CVSS6.5AI score0.01244EPSS

CVE•added 2000/10/20 4:0 a.m.•30 views

CVE-2000-0676

Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice.

5CVSS6.7AI score0.25173EPSS