Описание
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.
Уязвимые конфигурации
Конфигурация 1Версия до 4.7 (включая)
Одно из
cpe:2.3:a:netscape:communicator:*:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.04:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01244
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
около 3 лет назад
Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.
EPSS
Процентиль: 78%
0.01244
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other