Communicator

communicator

Vendor: Netscape • 35 CVEs

CVEs (35)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-1999-0892 1Netscape 1Communicator Apr 16, 2026 Dec 24, 1999 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
CVE-2000-0034 1Netscape 1Communicator Apr 16, 2026 Dec 22, 1999 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."
CVE-1999-1189 1Netscape 2Communicator Navigator Apr 16, 2026 Nov 24, 1999 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? characte...Show more Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? character in a URL that references an .asp, .cgi, .html, or .pl file.Show less
CVE-1999-1226 1Netscape 1Communicator Apr 16, 2026 Oct 28, 1999 N/A· v4 N/A· v3 2.6 LOW· v2 Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key.
CVE-1999-1357 1Netscape 1Communicator Apr 16, 2026 Oct 5, 1999 N/A· v4 N/A· v3 7.5 HIGH· v2 Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers t...Show more Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.Show less
CVE-1999-0685 1Netscape 1Communicator Apr 16, 2026 Sep 2, 1999 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.
CVE-1999-0809 1Netscape 1Communicator Apr 16, 2026 Jul 9, 1999 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page being viewed".
CVE-1999-0762 1Netscape 2Communicator Navigator Apr 16, 2026 May 24, 1999 N/A· v4 N/A· v3 2.6 LOW· v2 When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information.
CVE-1999-0425 1Netscape 1Communicator Apr 16, 2026 Mar 18, 1999 N/A· v4 N/A· v3 6.4 MEDIUM· v2 talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes.
CVE-1999-0424 1Netscape 1Communicator Apr 16, 2026 Mar 18, 1999 N/A· v4 N/A· v3 2.1 LOW· v2 talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose Netscape crashes.
CVE-1999-0440 2Netscape Sun 3Communicator JavaNavigator Apr 16, 2026 Mar 1, 1999 N/A· v4 N/A· v3 7.5 HIGH· v2 The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.
CVE-1999-0537 2Microsoft Netscape 2Communicator Internet Explorer Apr 16, 2026 Apr 1, 1998 N/A· v4 N/A· v3 7.5 HIGH· v2 A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
CVE-1999-1262 1Netscape 1Communicator Apr 16, 2026 Aug 1, 1997 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers to conduct...Show more Java in Netscape 4.5 does not properly restrict applets from connecting to other hosts besides the one from which the applet was loaded, which violates the Java security model and could allow remote attackers to conduct unauthorized activities.Show less
CVE-1999-0031 2Microsoft Netscape 2Communicator Internet Explorer Apr 16, 2026 Jul 8, 1997 N/A· v4 N/A· v3 2.6 LOW· v2 JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability.
CVE-1999-0174 1Netscape 1Communicator Apr 16, 2026 Feb 1, 1997 N/A· v4 N/A· v3 6.4 MEDIUM· v2 The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.

Previous 12