Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (35 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0676 1 Netscape 1 Communicator 2025-04-03 N/A
Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice.
CVE-2000-1187 1 Netscape 2 Communicator, Navigator 2025-04-03 N/A
Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field.
CVE-1999-0440 2 Netscape, Sun 3 Communicator, Navigator, Java 2025-04-03 N/A
The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.
CVE-1999-0685 1 Netscape 1 Communicator 2025-04-03 N/A
Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.
CVE-1999-0892 1 Netscape 1 Communicator 2025-04-03 N/A
Buffer overflow in Netscape Communicator before 4.7 via a dynamic font whose length field is less than the size of the font.
CVE-1999-1226 1 Netscape 1 Communicator 2025-04-03 N/A
Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key.
CVE-2002-2248 1 Netscape 1 Communicator 2025-04-03 N/A
Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method.
CVE-2002-2284 1 Netscape 1 Communicator 2025-04-03 N/A
Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes.
CVE-2002-2308 1 Netscape 1 Communicator 2025-04-03 N/A
Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage containing a recursive META refresh tag where the content tag is blank and the URL tag references itself.
CVE-1999-0174 1 Netscape 1 Communicator 2025-04-03 N/A
The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2002-1766 1 Netscape 1 Communicator 2025-04-03 N/A
Buffer overflow in Composer in Netscape 4.77 allows local users to overwrite process memory and execute arbitrary code via a font tag with a long face attribute.
CVE-2001-0596 2 Netscape, Redhat 2 Communicator, Linux 2025-04-03 N/A
Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF image whose comment contains the Javascript.
CVE-2000-0655 2 Mozilla, Netscape 2 Mozilla, Communicator 2025-04-03 N/A
Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.
CVE-2000-0711 2 Microsoft, Netscape 2 Virtual Machine, Communicator 2025-04-03 N/A
Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice.
CVE-1999-0031 2 Microsoft, Netscape 2 Internet Explorer, Communicator 2025-04-03 N/A
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability.