CVE-1999-0892
- EPSS 0.4%
- Veröffentlicht 24.12.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:16
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
- EPSS 1.44%
- Veröffentlicht 22.12.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:50:51
Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."
CVE-1999-1189
- EPSS 2.52%
- Veröffentlicht 24.11.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:54
Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? character in a URL that references an ...
CVE-1999-1226
- EPSS 0.85%
- Veröffentlicht 28.10.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:59
Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key.
CVE-1999-1357
- EPSS 1.38%
- Veröffentlicht 05.10.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:50:16
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cro...
CVE-1999-0685
- EPSS 1.59%
- Veröffentlicht 02.09.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:48:50
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.
- EPSS 1.4%
- Veröffentlicht 09.07.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:06
Netscape Communicator 4.x with Javascript enabled does not warn a user of cookie settings, even if they have selected the option to "Only accept cookies originating from the same server as the page being viewed".
CVE-1999-0762
- EPSS 1.45%
- Veröffentlicht 24.05.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:00
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information.
CVE-1999-0425
- EPSS 1.26%
- Veröffentlicht 18.03.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:48:22
talkback in Netscape 4.5 allows a local user to kill an arbitrary process of another user whose Netscape crashes.
CVE-1999-0424
- EPSS 0.38%
- Veröffentlicht 18.03.1999 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:48:22
talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose Netscape crashes.