PT-2001-1926 · Netscape · Netscape

Published

2001-10-18

Updated

2017-10-10

CVE-2001-0745

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Netscape version 4.7x

Description: The issue allows remote attackers to obtain sensitive information, including the user's login, mailbox location, and installation path. This is achieved through Javascript that accesses the mailbox URL in the document.referrer property.

Recommendations: For Netscape version 4.7x, consider disabling Javascript as a temporary workaround until a patch is available. Restrict access to sensitive information to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0745

Affected Products

Netscape

PT-2001-1926 · Netscape · Netscape

CVE-2001-0745

Related Identifiers

Affected Products

References · 4