CVE-2000-0711 : Detail

Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victim's system via a malicious applet, as demonstrated by Brown Orifice.

Metrics

EPSS

EPSS Score

EPSS Percentile

Exploit information

Exploit Database EDB-ID : 20139

Publication date : 2000-08-02 22h00 +00:00
Author : Alexey Yarovinsky
EDB Verified : Yes

Products Mentioned

Configuraton 0

Microsoft>>Virtual_machine >> Version 2000

Microsoft>>Virtual_machine >> Version 3100

Microsoft>>Virtual_machine >> Version 3200

Microsoft>>Virtual_machine >> Version 3300

Netscape>>Communicator >> Version 4.0

Netscape>>Communicator >> Version 4.04

Netscape>>Communicator >> Version 4.05

Netscape>>Communicator >> Version 4.5

Netscape>>Communicator >> Version 4.06

Netscape>>Communicator >> Version 4.6

Netscape>>Communicator >> Version 4.07

Netscape>>Communicator >> Version 4.7

Netscape>>Communicator >> Version 4.08

Netscape>>Communicator >> Version 4.51

Netscape>>Communicator >> Version 4.61

Netscape>>Communicator >> Version 4.72

Netscape>>Communicator >> Version 4.73

Netscape>>Communicator >> Version 4.74

References