Vulnerabilities > CVE-2000-0676 - Unspecified vulnerability in Netscape Communicator
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice.
Vulnerable Configurations
Exploit-Db
| description | Netscape Communicator 4.x URL Read Vulnerability. CVE-2000-0676. Remote exploits for multiple platform |
| id | EDB-ID:20140 |
| last seen | 2016-02-02 |
| modified | 2000-08-03 |
| published | 2000-08-03 |
| reporter | Dan Brumleve |
| source | https://www.exploit-db.com/download/20140/ |
| title | Netscape Communicator 4.x URL Read Vulnerability |
Redhat
| advisories |
|
References
- ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:39.netscape.asc
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0019.html
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0115.html
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0236.html
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0265.html
- http://www.calderasystems.com/support/security/advisories/CSSA-2000-027.1.txt
- http://www.cert.org/advisories/CA-2000-15.html
- http://www.novell.com/linux/security/advisories/suse_security_announce_60.html
- http://www.redhat.com/support/errata/RHSA-2000-054.html
- http://www.securityfocus.com/bid/1546