CVSS: 4.3EPSS: 2%CPEs: 1EXPL: 3CVE-2003-1419 – Netscape 7.0 - JavaScript Regular Expression Denial of Service
https://notcve.org/view.php?id=CVE-2003-1419
Netscape 7.0 allows remote attackers to cause a denial of service (crash) via a web page with an invalid regular expression argument to the JavaScript reformatDate function. • https://www.exploit-db.com/exploits/22287 http://archives.neohapsis.com/archives/bugtraq/2003-02/0338.html http://www.securityfocus.com/bid/6959 https://exchange.xforce.ibmcloud.com/vulnerabilities/11444 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 8%CPEs: 12EXPL: 0CVE-2002-1308
https://notcve.org/view.php?id=CVE-2002-1308
Heap-based buffer overflow in Netscape and Mozilla allows remote attackers to execute arbitrary code via a jar: URL that references a malformed .jar file, which overflows a buffer during decompression. Desbordamiento de búfer basado en el montículo (heap) en Netscape y Mozilla permite a atacantes remotos ejecutar código arbitrario mediante una URL de tipo jar: que referencia a un fichero .jar malformado, lo que desborda un búfer durante la descompresión. • http://bugzilla.mozilla.org/show_bug.cgi?id=157646 http://marc.info/?l=bugtraq&m=103730181813075&w=2 http://www.redhat.com/support/errata/RHSA-2003-162.html http://www.redhat.com/support/errata/RHSA-2003-163.html http://www.securityfocus.com/bid/6185 https://exchange.xforce.ibmcloud.com/vulnerabilities/10636 https://access.redhat.com/security/cve/CVE-2002-1308 https://bugzilla.redhat.com/show_bug.cgi?id=1616870 •