Vulnerabilities > Netscape > Communicator > 4.04
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-08-02 | CVE-2001-0596 | Information Disclosure vulnerability in Netscape Navigator 'about:' Domain Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF image whose comment contains the Javascript. | 7.5 |
2001-01-09 | CVE-2000-1187 | Unspecified vulnerability in Netscape Communicator and Navigator Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field. | 7.5 |
2000-10-20 | CVE-2000-0676 | Unspecified vulnerability in Netscape Communicator Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice. | 5.0 |
1999-10-28 | CVE-1999-1226 | Unspecified vulnerability in Netscape Communicator Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key. | 2.6 |
1999-10-05 | CVE-1999-1357 | Unspecified vulnerability in Netscape Communicator Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters. | 7.5 |