Lucene search
HistoryOct 03, 2022 - 4:23 p.m.
CVE-2002-2013
cve-2002-2013
nvd
information security
remote attack
cookie theft
mozilla
netscape
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
62.2%
Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.
Affected configurations
Node
mozillamozillaMatch0.9.2
ORmozillamozillaMatch0.9.2.1
ORmozillamozillaMatch0.9.3
ORmozillamozillaMatch0.9.4
ORmozillamozillaMatch0.9.4.1
ORmozillamozillaMatch0.9.5
ORmozillamozillaMatch0.9.6
ORnetscapecommunicatorMatch4.0
ORnetscapecommunicatorMatch4.4
ORnetscapecommunicatorMatch4.5
ORnetscapecommunicatorMatch4.5_beta
ORnetscapecommunicatorMatch4.06
ORnetscapecommunicatorMatch4.6
ORnetscapecommunicatorMatch4.07
ORnetscapecommunicatorMatch4.7
ORnetscapecommunicatorMatch4.08
ORnetscapecommunicatorMatch4.51
ORnetscapecommunicatorMatch4.61
ORnetscapecommunicatorMatch4.72
ORnetscapecommunicatorMatch4.73
ORnetscapecommunicatorMatch4.74
ORnetscapecommunicatorMatch4.75
ORnetscapecommunicatorMatch4.76
ORnetscapecommunicatorMatch4.77
ORnetscapecommunicatorMatch4.78
ORnetscapenavigatorMatch4.77
ORnetscapenavigatorMatch6.0
ORnetscapenavigatorMatch6.01
ORnetscapenavigatorMatch6.1
ORnetscapenavigatorMatch6.2
Related
nvd
nvd
CVE-2002-2013
2002-12-31 05:00:00
cvelist
cvelist
CVE-2002-2013
2022-10-03 16:23:50
redhatcve
redhatcve
CVE-2002-2013
2015-10-30 09:48:22
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
62.2%
Related for CVE-2002-2013