CVE-1999-1226

Name

CVE-1999-1226

Description

Netscape Communicator 4.7 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long certificate key.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
cve@mitre.org	http://www.securiteam.com/exploits/Netscape_4_7_and_earlier_vulnerable_to__Huge_Key__DoS.html
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/3436

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:netscape:communicator::::::::`	communicator	>= None	<= 4.7

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
communicator	edge-community	4.0.2-r2	team/kde <bribbers@disroot.org>	possibly vulnerable
communicator	edge-community	4.0.2-r1	team/kde <bribbers@disroot.org>	possibly vulnerable
communicator	edge-community	4.0.2-r0	team/kde <bribbers@disroot.org>	possibly vulnerable
communicator	edge-community	4.0.0-r1	team/kde <bribbers@disroot.org>	possibly vulnerable
communicator	3.23-community	4.0.2-r2	team/kde <bribbers@disroot.org>	possibly vulnerable
communicator	3.22-community	4.0.0-r1	team/kde <bribbers@disroot.org>	possibly vulnerable