Shodan
Vulnerabilities
Vulnerable Software
Netscape:  Security Vulnerabilities
CVE-2000-0237
Netscape Enterprise Server with Web Publishing enabled allows remote attackers to list arbitrary directories via a GET request for the /publisher directory, which provides a Java applet that allows the attacker to browse the directories.
CVSS Score
6.4
EPSS Score
0.021
Published
2000-03-11
CVE-1999-1002
Netscape Navigator uses weak encryption for storing a user's Netscape mail password.
CVSS Score
5.0
EPSS Score
0.008
Published
2000-01-12
CVE-2000-0087
Netscape Mail Notification (nsnotify) utility in Netscape Communicator uses IMAP without SSL, even if the user has set a preference for Communicator to use an SSL connection, allowing a remote attacker to sniff usernames and passwords in plaintext.
CVSS Score
5.0
EPSS Score
0.013
Published
2000-01-12
CVE-1999-0744
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.
CVSS Score
7.5
EPSS Score
0.025
Published
2000-01-04
CVE-1999-0892
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
CVSS Score
4.6
EPSS Score
0.004
Published
1999-12-24
CVE-2000-0034
Netscape 4.7 records user passwords in the preferences.js file during an IMAP or POP session, even if the user has not enabled "remember passwords."
CVSS Score
5.0
EPSS Score
0.014
Published
1999-12-22
CVE-1999-1005
Groupwise web server GWWEB.EXE allows remote attackers to read arbitrary files with .htm extensions via a .. (dot dot) attack using the HELP parameter.
CVSS Score
5.0
EPSS Score
0.079
Published
1999-12-19
CVE-1999-0853
Buffer overflow in Netscape Enterprise Server and Netscape FastTrack Server allows remote attackers to gain privileges via the HTTP Basic Authentication procedure.
CVSS Score
10.0
EPSS Score
0.034
Published
1999-12-01
CVE-1999-1189
Buffer overflow in Netscape Navigator/Communicator 4.7 for Windows 95 and Windows 98 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument after the ? character in a URL that references an .asp, .cgi, .html, or .pl file.
CVSS Score
7.5
EPSS Score
0.025
Published
1999-11-24
CVE-1999-0827
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
CVSS Score
2.6
EPSS Score
0.047
Published
1999-11-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved