CVSS: 5.0EPSS: 0%CPEs: 30EXPL: 2CVE-2002-2013
https://notcve.org/view.php?id=CVE-2002-2013
31 Dec 2002 — Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain. • http://alive.znep.com/~marcs/security/mozillacookie/demo.html •
CVSS: 10.0EPSS: 4%CPEs: 14EXPL: 0CVE-2002-2248
https://notcve.org/view.php?id=CVE-2002-2248
31 Dec 2002 — Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method. • http://marc.info/?l=bugtraq&m=103834439321292&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 14EXPL: 0CVE-2002-2284
https://notcve.org/view.php?id=CVE-2002-2284
31 Dec 2002 — Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes. • http://marc.info/?l=bugtraq&m=103798147613151&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2002-1204
https://notcve.org/view.php?id=CVE-2002-1204
21 Nov 2002 — Netscape Communicator 4.x allows attackers to use a link to steal a user's preferences, including potentially sensitive information such as URL history, e-mail address, and possibly the e-mail password, by redefining the user_pref() function and accessing the prefs.js file, which is stored in a directory with a predictable name. Netscape Communicator 4.x permite a atacantes usar un enlace para robar las preferencias de un usuario, incluyendo información potencialmente sensible como historia de URLs, direcci... • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0081.html •