← Back

Netscape

netscape

120 CVEs • 21 products

Products (21)

Click to collapse
Toggle
Navigator
navigator
44 CVEs
Communicator
communicator
35 CVEs
Enterprise Server
enterprise_server
24 CVEs
Fasttrack Server
fasttrack_server
8 CVEs
Directory Server
directory_server
7 CVEs
Messaging Server
messaging_server
5 CVEs
Iplanet Ical
iplanet_ical
4 CVEs
Collabra Server
collabra_server
3 CVEs
Proxy Server
proxy_server
2 CVEs
Certificate Server
certificate_server
2 CVEs
News Server
news_server
2 CVEs
Professional Services Ftpserver
professional_services_ftpserver
1 CVE
Netscape Messaging Server Multiplexor
netscape_messaging_server_multiplexor
1 CVE
Smartdownload
smartdownload
1 CVE
Publishingxpert
publishingxpert
1 CVE
Messanger
messanger
1 CVE
Personalization Engine
personalization_engine
1 CVE
Portable Runtime Api
portable_runtime_api
1 CVE
Certificate Management System
certificate_management_system
1 CVE
Commerce Server
commerce_server
1 CVE
Communications Server
communications_server
1 CVE

CVEs (120)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2000-0237
1Netscape
1Enterprise Server
Apr 16, 2026
Mar 11, 2000
N/A· v4
N/A· v3
6.4 MEDIUM· v2
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse...Show more
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.Show less
CVE-2000-0087
1Netscape
2Communicator
Navigator
Apr 16, 2026
Jan 12, 2000
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames...Show more
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext.Show less
CVE-1999-1002
1Netscape
1Communicator
Apr 16, 2026
Jan 12, 2000
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Netscape Navigator uses weak encryption for storing a user's Netscape mail password.
CVE-1999-0744
1Netscape
2Enterprise Server
Fasttrack Server
Apr 16, 2026
Jan 4, 2000
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.
CVE-1999-0892
1Netscape
1Communicator
Apr 16, 2026
Dec 24, 1999
N/A· v4
N/A· v3
4.6 MEDIUM· v2
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
CVE-2000-0034
1Netscape
1Communicator
Apr 16, 2026
Dec 22, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."
CVE-1999-1005
2Netscape
Novell
2Enterprise Server
Groupwise
Apr 16, 2026
Dec 19, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
CVE-1999-0853
1Netscape
2Enterprise Server
Fasttrack Server
Apr 16, 2026
Dec 1, 1999
N/A· v4
N/A· v3
10.0 HIGH· v2
Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.
CVE-1999-1189
1Netscape
2Communicator
Navigator
Apr 16, 2026
Nov 24, 1999
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? characte...Show more
Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? character in a URL that references an .asp, .cgi, .html, or .pl file.Show less
CVE-1999-0827
2Microsoft
Netscape
3Ie
Internet ExplorerNavigator
Apr 16, 2026
Nov 1, 1999
N/A· v4
N/A· v3
2.6 LOW· v2
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
CVE-1999-1532
1Netscape
1Messaging Server
Apr 16, 2026
Oct 29, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service (memory exhaustion) via a series of long RCPT TO commands.
CVE-1999-1226
1Netscape
1Communicator
Apr 16, 2026
Oct 28, 1999
N/A· v4
N/A· v3
2.6 LOW· v2
Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key.
CVE-1999-1357
1Netscape
1Communicator
Apr 16, 2026
Oct 5, 1999
N/A· v4
N/A· v3
7.5 HIGH· v2
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers t...Show more
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.Show less
CVE-1999-0751
1Netscape
1Enterprise Server
Apr 16, 2026
Sep 13, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Buffer overflow in Accept command in Netscape Enterprise Server 3.6 with the SSL Handshake Patch.
CVE-1999-0685
1Netscape
1Communicator
Apr 16, 2026
Sep 2, 1999
N/A· v4
N/A· v3
5.1 MEDIUM· v2
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.
CVE-1999-1130
1Netscape
1Enterprise Server
Apr 16, 2026
Jul 30, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTML files by specifying a search command using the HTML-tocrec-...Show more
Default configuration of the search engine in Netscape Enterprise Server 3.5.1, and possibly other versions, allows remote attackers to read the source of JHTML files by specifying a search command using the HTML-tocrec-demo1.pat pattern file.Show less
CVE-1999-0809
1Netscape
1Communicator
Apr 16, 2026
Jul 9, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page being viewed".
CVE-1999-0752
1Netscape
1Enterprise Server
Apr 16, 2026
Jul 6, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake.
CVE-1999-0762
1Netscape
2Communicator
Navigator
Apr 16, 2026
May 24, 1999
N/A· v4
N/A· v3
2.6 LOW· v2
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information.
CVE-1999-0686
2Hp
Netscape
2Enterprise Server
Hp Ux
Apr 16, 2026
May 7, 1999
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.