CVE-2002-2013

Опубликовано: 31 дек. 2002

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mozilla:mozilla:0.9.2:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:mozilla:0.9.2.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:mozilla:0.9.3:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:mozilla:0.9.4:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:mozilla:0.9.4.1:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:mozilla:0.9.5:*:*:*:*:*:*:*

cpe:2.3:a:mozilla:mozilla:0.9.6:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.4:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.5_beta:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.06:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.07:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.08:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.74:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.75:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.76:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.77:*:*:*:*:*:*:*

cpe:2.3:a:netscape:communicator:4.78:*:*:*:*:*:*:*

cpe:2.3:a:netscape:navigator:4.77:*:*:*:*:*:*:*

cpe:2.3:a:netscape:navigator:6.0:*:*:*:*:*:*:*

cpe:2.3:a:netscape:navigator:6.01:*:*:*:*:*:*:*

cpe:2.3:a:netscape:navigator:6.1:*:*:*:*:*:*:*

cpe:2.3:a:netscape:navigator:6.2:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00477

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gf6p-gjjg-j6pg

github

больше 3 лет назад