Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0685 โ€” Improper Restriction of Operations within the Bounds of a Memory Buffer in Communicator

4 documents4 sources
Severity
5.1MEDIUMNVD
EPSS
5.8%
top 9.52%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Netscape Communicator
Timeline
PublishedSep 2
Latest updateApr 30

Description

Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

โ–ถNVDnetscape/communicator5 versions+4

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-qr94-86r9-f9hg: Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage optionโ†—2022-04-30
โ–ถ
CVEList
CVE-1999-0685: Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage optionโ†—2000-01-04
โ–ถ

๐Ÿ’ฅExploits & PoCs

1
Exploit-DB
Netscape Communicator 4.06/4.5/4.6/4.51/4.61 - EMBED Buffer Overflowโ†—1999-09-02
โ–ถ
CVE-1999-0685 โ€” Netscape Communicator vulnerability | cvebase