Netscape: >> Enterprise Server >> 3.63 Security Vulnerabilities
servlet/SnoopServlet (a servlet installed by default) in Netscape Enterprise 3.63 has reflected XSS via an arbitrary parameter=[XSS] in the query string. A remote unauthenticated attacker could potentially exploit this vulnerability to supply malicious HTML or JavaScript code to a vulnerable web application, which is then reflected back to the victim and executed by the web browser. NOTE: this product is discontinued.
CVSS Score
6.1
EPSS Score
0.004
Published
2019-01-31
Buffer overflow in Netscape Enterprise Server and FastTrask Server allows remote attackers to gain privileges via a long HTTP GET request.
CVSS Score
7.5
EPSS Score
0.046
Published
2000-01-04
Denial of service in Netscape Enterprise Server via a buffer overflow in the SSL handshake.
CVSS Score
5.0
EPSS Score
0.037
Published
1999-07-06
Denial of service in Netscape Enterprise Server (NES) in HP Virtual Vault (VVOS) via a long URL.
CVSS Score
5.0
EPSS Score
0.007
Published
1999-05-07
Netscape Enterprise servers may list files through the PageServices query.
CVSS Score
5.0
EPSS Score
0.034
Published
1998-08-01