← Back

CVE-2002-2013

nvd nist
Published: Dec 31, 2002Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.

Affected (30)

Mozilla
1 product
Mozilla
Netscape
2 products
Communicator
Navigator
Configuration A
30 vulnerable
Vulnerable SoftwareAffected Versions
Mozilla
Mozilla
Version 0.9.2.1
Mozilla
Version 0.9.2
Mozilla
Version 0.9.3
Mozilla
Version 0.9.4.1
Mozilla
Version 0.9.4
Mozilla
Version 0.9.5
Mozilla
Version 0.9.6
Netscape
Communicator
Version 4.06
Communicator
Version 4.07
Communicator
Version 4.08
Communicator
Version 4.0
Communicator
Version 4.4
Communicator
Version 4.51
Communicator
Version 4.5
Communicator
Version 4.5_beta
Communicator
Version 4.61
Communicator
Version 4.6
Communicator
Version 4.72
Communicator
Version 4.73
Communicator
Version 4.74
Communicator
Version 4.75
Communicator
Version 4.76
Communicator
Version 4.77
Communicator
Version 4.78
Communicator
Version 4.7
Netscape
Navigator
Version 4.77
Navigator
Version 6.01
Navigator
Version 6.0
Navigator
Version 6.1
Navigator
Version 6.2

References (8)

Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Exploit
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Patch

Timeline

No history available yet.