CVE-2002-0593

Name of the Vulnerable Software and Affected Versions nautilus-devel versions 1.0.4 nautilus versions 1.0.4 nautilus-mozilla versions 1.0.4 Netscape versions 6 and earlier Mozilla versions 1.0 RC1 and earlier

Description The issue involves multiple vulnerabilities in the nautilus package of Red Hat Linux and a buffer overflow in Netscape and Mozilla, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. The buffer overflow occurs when a long channel name in an IRC URI is used, potentially allowing remote attackers to cause a denial of service or execute arbitrary code.

Recommendations For nautilus-devel version 1.0.4, consider updating to a newer version to mitigate the risk. For nautilus version 1.0.4, consider updating to a newer version to mitigate the risk. For nautilus-mozilla version 1.0.4, consider updating to a newer version to mitigate the risk. For Netscape versions 6 and earlier, avoid using long channel names in IRC URIs until a patch is available. For Mozilla versions 1.0 RC1 and earlier, avoid using long channel names in IRC URIs until a patch is available.