CVE-1999-1357 - CVE Details

Description

Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

netscape - communicator

Affected Versions:

netscape - communicator

Affected Versions:

4.04

netscape - communicator

Affected Versions:

4.51

References

http://marc.info/?l=bugtraq&m=93915331626185&w=2
http://marc.info/?l=bugtraq&m=93915331626185&w=2