VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netscape
>
Navigator
> Low
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2004-12-31
CVE-2004-1753
The Apple Java plugin, as used in Netscape 7.1 and 7.2, Mozilla 1.7.2, and Firefox 0.9.3 on MacOS X 10.3.5, when tabbed browsing is enabled, does not properly handle SetWindow(NULL) calls, which allows Java applets from one tab to draw to other tabs and facilitates phishing attacks that spoof tabs.
network
high complexity
mozilla
netscape
2.6
2.6
2003-12-31
CVE-2003-1265
Netscape 7.0 and Mozilla 5.0 do not immediately delete messages in the trash folder when users select the 'Empty Trash' option, which could allow local users to access deleted messages.
local
low complexity
mozilla
netscape
2.1
2.1
1999-11-01
CVE-1999-0827
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
network
high complexity
netscape
microsoft
2.6
2.6
1999-05-24
CVE-1999-0762
Unspecified vulnerability in Netscape Communicator and Navigator
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information.
network
high complexity
netscape
2.6
2.6
1998-12-01
CVE-1999-0869
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.
network
high complexity
microsoft
netscape
2.6
2.6
1996-03-29
CVE-1999-0141
Unspecified vulnerability in Netscape Navigator 2.02
Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet.
local
high complexity
netscape
3.7
3.7