| ID |
CVE-1999-0762
|
| Summary |
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:netscape:communicator:4.6:*:windows_95:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.6:*:windows_95:*:*:*:*:*
-
cpe:2.3:a:netscape:communicator:4.x:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.x:*:*:*:*:*:*:*
-
cpe:2.3:a:netscape:navigator:*:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:*:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 2.6 (as of 17-08-2022 - 08:15) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
HIGH |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
NONE |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:H/Au:N/C:P/I:N/A:N
|
| refmap
via4
|
| bugtraq | 19990524 Netscape Communicator JavaScript in security vulnerability</td></tr><tr><td><b>xf</b></td><td><a href='/link/refmap.xf/netscape-title'><span class='glyphicon glyphicon-link' aria-hidden='true'></span> </a>netscape-title</td></tr></table>
</td>
</tr>
<tr>
<td class="warning">Last major update</td>
<td class="info">17-08-2022 - 08:15</td>
</tr>
<tr>
<td class="warning">Published</td>
<td class="info">24-05-1999 - 04:00</td>
</tr>
<tr>
<td class="warning">Last modified</td>
<td class="info">17-08-2022 - 08:15</td>
</tr>
</tbody>
</table>
</div>
<a href="#" class="back-to-top">Back to Top</a>
<!-- Body End -->
</div>
</div>
</div>
</body>
</html> |
|
