Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1187

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-1187
Last Modified 05 Sep 2008 04:22:52
Published 09 Jan 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-1187

Summary

Buffer overflow in the HTML parser for Netscape 4.75 and earlier allows remote attackers to execute arbitrary commands via a long password value in a form field.

Vulnerable Systems

Application

  • Netscape Communicator 4.75

  • Netscape Navigator 4.75


References

REDHAT - RHSA-2000:109

FREEBSD - FreeBSD-SA-00:66

XF - netscape-client-html-bo

OSVDB - 7207

BUGTRAQ - 20001121 Immunix OS Security update for netscape

SUSE - SuSE-SA:2000:48

CONECTIVA - CLSA-2000:344


Last Updated: 27 May 2016 10:36:04