Vulnerabilities > Netscape > Communicator > 4.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-05-10 | CVE-2000-0409 | Unspecified vulnerability in Netscape Communicator Netscape 4.73 and earlier follows symlinks when it imports a new certificate, which allows local users to overwrite files of the user importing the certificate. | 3.7 |
| 2000-05-10 | CVE-2000-0406 | Unspecified vulnerability in Netscape Communicator Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability. | 2.6 |
| 1999-10-28 | CVE-1999-1226 | Unspecified vulnerability in Netscape Communicator Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key. | 2.6 |
| 1999-10-05 | CVE-1999-1357 | Unspecified vulnerability in Netscape Communicator Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters. | 7.5 |
| 1999-09-02 | CVE-1999-0685 | Unspecified vulnerability in Netscape Communicator Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option. | 5.1 |
| 1999-05-24 | CVE-1999-0762 | Unspecified vulnerability in Netscape Communicator and Navigator When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information. | 2.6 |
| 1997-02-01 | CVE-1999-0174 | Unspecified vulnerability in Netscape Communicator The view-source CGI program allows remote attackers to read arbitrary files via a .. | 6.4 |