GCVE - cpe:2.3:a:netscape:communicator:4.78:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:netscape:communicator:4.78:*:*:*:*:*:*:*

part: a version: 4.78 update: *

Vendor	Netscape (`2c519990-8f9a-5ac3-8d7c-5897cb1e036f`)
Product	Communicator (`e01f7476-f3f2-5a6c-846e-5300ccb4c0f0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2002-2284`	vulnerable	2026-06-03 14:26:23.700373	Details available Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes. Published: 2007-10-18T10:00:00.000Z Updated: 2024-08-08T03:59:11.410Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/6223 http://www.lsd-pl.net/documents/javasecurity-1.0.0.pdf https://exchange.xforce.ibmcloud.com/vulnerabilities/10714 http://marc.info/?l=bugtraq&m=103798147613151&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-2248`	vulnerable	2026-06-03 14:26:23.567992	Details available Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method. Published: 2007-10-14T20:00:00.000Z Updated: 2024-08-08T03:59:11.425Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/10706 http://marc.info/?l=bugtraq&m=103834439321292&w=2 http://www.securityfocus.com/bid/6256	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-2013`	vulnerable	2026-06-03 14:26:22.929397	Details available Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain. Published: 2005-07-14T04:00:00.000Z Updated: 2024-09-16T20:12:45.799Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/3925 http://archives.neohapsis.com/archives/bugtraq/2002-01/0270.html http://www.iss.net/security_center/static/7973.php http://alive.znep.com/~marcs/security/mozillacookie/demo.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-1204`	vulnerable	2026-06-03 14:26:16.111629	Details available Netscape Communicator 4.x allows attackers to use a link to steal a user's preferences, including potentially sensitive information such as URL history, e-mail address, and possibly the e-mail password, by redefining the user_pref() function and accessing the prefs.js file, which is stored in a directory with a predictable name. Published: 2002-11-21T05:00:00.000Z Updated: 2024-08-08T03:19:28.578Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0081.html http://www.idefense.com/advisory/11.19.02c.txt http://www.iss.net/security_center/static/10655.php http://www.securityfocus.com/bid/6215	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.