1. CVE-Search
  2. CVE-2000-0655
ID CVE-2000-0655
Summary Netscape Communicator 4.73 and earlier allows remote attackers to cause a denial of service or execute arbitrary commands via a JPEG image containing a comment with an illegal field length of 1.
References
Vulnerable Configurations
  • cpe:2.3:a:mozilla:mozilla:m15:*:*:*:*:*:*:*
    cpe:2.3:a:mozilla:mozilla:m15:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.05:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.05:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.5_beta:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.5_beta:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.06:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.06:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.07:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.07:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.08:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.08:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:*
  • cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:*
    cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 10-09-2008 - 19:05)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
redhat via4
advisories
rhsa
id RHSA-2000:046
refmap via4
bid 1503
bugtraq
  • 20000724 JPEG COM Marker Processing Vulnerability in Netscape Browsers
  • 20000801 MDKSA-2000:027-1 netscape update
  • 20000810 Conectiva Linux Security Announcement - netscape
freebsd FreeBSD-SA-00:39
netbsd NetBSD-SA2000-011
suse 20000823 Security Hole in Netscape, Versions 4.x, possibly others
turbo TLSA2000017-1
xf netscape-jpg-comment
Last major update 10-09-2008 - 19:05
Published 25-07-2000 - 04:00
Last modified 10-09-2008 - 19:05
Back to Top