CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
91.9%
Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim’s system via a malicious applet, as demonstrated by Brown Orifice.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | virtual_machine | 2000 | cpe:2.3:a:microsoft:virtual_machine:2000:*:*:*:*:*:*:* |
microsoft | virtual_machine | 3100 | cpe:2.3:a:microsoft:virtual_machine:3100:*:*:*:*:*:*:* |
microsoft | virtual_machine | 3200 | cpe:2.3:a:microsoft:virtual_machine:3200:*:*:*:*:*:*:* |
microsoft | virtual_machine | 3300 | cpe:2.3:a:microsoft:virtual_machine:3300:*:*:*:*:*:*:* |
netscape | communicator | 4.0 | cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:* |
netscape | communicator | 4.04 | cpe:2.3:a:netscape:communicator:4.04:*:*:*:*:*:*:* |
netscape | communicator | 4.05 | cpe:2.3:a:netscape:communicator:4.05:*:*:*:*:*:*:* |
netscape | communicator | 4.5 | cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:* |
netscape | communicator | 4.06 | cpe:2.3:a:netscape:communicator:4.06:*:*:*:*:*:*:* |
netscape | communicator | 4.6 | cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:* |