Netscape

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-1999-0758 1Netscape 2Enterprise Server Fasttrack Server Apr 16, 2026 Mar 12, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape Enterprise 3.5.1 and FastTrack 3.01 servers allow a remote attacker to view source code to scripts by appending a %20 to the script's URL.
CVE-2000-1187 1Netscape 2Communicator Navigator Apr 16, 2026 Jan 9, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field.
CVE-2000-0961 1Netscape 2Messaging Server Netscape Messaging Server Multiplexor Apr 16, 2026 Dec 19, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command.
CVE-2000-0960 1Netscape 1Messaging Server Apr 16, 2026 Dec 19, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest...Show more The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest email addresses for spam abuse.Show less
CVE-2000-1076 2Netscape Sun 2Directory Server Iplanet Certificate Management System Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on t...Show more Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server.Show less
CVE-2000-1075 2Netscape Sun 2Directory Server Iplanet Certificate Management System Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrato...Show more Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. (dot dot) attack in the Agent, End Entity, or Administrator services.Show less
CVE-2000-1074 1Netscape 1Iplanet Ical Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current o...Show more csstart program in iCal 2.1 Patch 2 uses relative pathnames to install the libsocket and libnsl libraries, which could allow the icsuser account to gain root privileges by creating a Trojan Horse library in the current or parent directory.Show less
CVE-2000-1073 1Netscape 1Iplanet Ical Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 csstart program in iCal 2.1 Patch 2 searches for the cshttpd program in the current working directory, which allows local users to gain root privileges by creating a Trojan Horse cshttpd program in a directory and callin...Show more csstart program in iCal 2.1 Patch 2 searches for the cshttpd program in the current working directory, which allows local users to gain root privileges by creating a Trojan Horse cshttpd program in a directory and calling csstart from that directory.Show less
CVE-2000-1072 1Netscape 1Iplanet Ical Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 iCal 2.1 Patch 2 installs many files with world-writeable permissions, which allows local users to modify the iCal configuration and execute arbitrary commands by replacing the iplncal.sh program with a Trojan horse.
CVE-2000-1071 1Netscape 1Iplanet Ical Apr 16, 2026 Dec 11, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 The GUI installation for iCal 2.1 Patch 2 disables access control for the X server using an "xhost +" command, which allows remote attackers to monitor X Windows events and gain privileges.
CVE-2000-0711 2Microsoft Netscape 2Communicator Virtual Machine Apr 16, 2026 Oct 20, 2000 N/A· v4 N/A· v3 7.5 HIGH· v2 Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstra...Show more Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice.Show less
CVE-2000-0676 1Netscape 1Communicator Apr 16, 2026 Oct 20, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demons...Show more Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice.Show less
CVE-2000-0655 2Mozilla Netscape 2Communicator Mozilla Apr 16, 2026 Jul 25, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.
CVE-2000-0600 2Netscape Novell 2Enterprise Server Netware Apr 16, 2026 Jun 26, 2000 N/A· v4 N/A· v3 7.5 HIGH· v2 Netscape Enterprise Server in NetWare 5.1 allows remote attackers to cause a denial of service or execute arbitrary commands via a malformed URL.
CVE-2000-0577 1Netscape 1Professional Services Ftpserver Apr 16, 2026 Jun 21, 2000 N/A· v4 N/A· v3 10.0 HIGH· v2 Netscape Professional Services FTP Server 1.3.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2000-0517 1Netscape 1Communicator Apr 16, 2026 May 26, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a l...Show more Netscape 4.73 and earlier does not properly warn users about a potentially invalid certificate if the user has previously accepted the certificate for a different web site, which could allow remote attackers to spoof a legitimate web site by compromising that site's DNS information.Show less
CVE-2000-0409 1Netscape 1Communicator Apr 16, 2026 May 10, 2000 N/A· v4 N/A· v3 3.7 LOW· v2 Netscape 4.73 and earlier follows symlinks when it imports a new certificate, which allows local users to overwrite files of the user importing the certificate.
CVE-2000-0406 1Netscape 1Communicator Apr 16, 2026 May 10, 2000 N/A· v4 N/A· v3 2.6 LOW· v2 Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own...Show more Netscape Communicator before version 4.73 and Navigator 4.07 do not properly validate SSL certificates, which allows remote attackers to steal information by redirecting traffic from a legitimate web server to their own malicious server, aka the "Acros-Suencksen SSL" vulnerability.Show less
CVE-1999-0790 1Netscape 1Communicator Apr 16, 2026 Apr 1, 2000 N/A· v4 N/A· v3 2.6 LOW· v2 A remote attacker can read information from a Netscape user's cache via JavaScript.
CVE-2000-0236 1Netscape 1Enterprise Server Apr 16, 2026 Mar 17, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp-cs-dump.

Previous 1 2 345 6 Next