NetscapeCVEs & Vulnerabilities
120 CVEs affecting Netscape products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
Most Affected Products
Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page being viewed".
Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake.
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information.
Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.
The Netscape Directory Server installation procedure leaves sensitive information in a file that is accessible to local users.
talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose Netscape crashes.
talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes.
The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.
Denial of service Netscape Enterprise Server with VirtualVault on HP-UX VVOS systems.
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.
Netscape Enterprise servers may list files through the PageServices query.
Arbitrary command execution via IMAP buffer overflow in authenticate command.
Information from SSL-encrypted sessions via PKCS #1.
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.
Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.
Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers to conduct unauthorized activities.
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability.
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.
The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.
List of arbitrary files on Web host via nph-test-cgi script.
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
Java Bytecode Verifier allows malicious applets to execute arbitrary commands as the user of the applet.
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts.