Vulnerabilities > Netscape > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1236 | Remote Buffer Overflow vulnerability in Netscape Directory Server 3.6 Buffer overflow in the LDAP component for Netscape Directory Server (NDS) 3.6 on HP-UX and other operating systems allows remote attackers to execute arbitrary code. | 10.0 |
| 2004-12-31 | CVE-2004-0904 | Integer Overflow vulnerability in Mozilla Browser BMP Image Decoding Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide bitmap files that trigger heap-based buffer overflows. | 10.0 |
| 2004-08-18 | CVE-2004-0722 | Multiple vulnerability Fixed in SCO OpenServer Release 5.0.7 Maintenance Pack 4 Released - Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code. | 10.0 |
| 2002-12-31 | CVE-2002-2248 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Netscape Communicator Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method. | 10.0 |
| 2001-03-12 | CVE-2000-0308 | Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. | 10.0 |
| 2000-12-19 | CVE-2000-0961 | Unspecified vulnerability in Netscape products Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command. | 10.0 |
| 2000-12-11 | CVE-2000-1076 | Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server. | 10.0 |
| 2000-12-11 | CVE-2000-1074 | Unspecified vulnerability in Netscape Iplanet Ical 2.1 csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory. | 10.0 |
| 2000-12-11 | CVE-2000-1071 | Unspecified vulnerability in Netscape Iplanet Ical 2.1 The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges. | 10.0 |
| 1999-12-01 | CVE-1999-0853 | Unspecified vulnerability in Netscape Enterprise Server and Fasttrack Server Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure. | 10.0 |