CVE-2000-0711 Information

Description

Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities which allows remote attackers to create a server on the victim’s system via a malicious applet as demonstrated by Brown Orifice.

Reference

http://www.cert.org/advisories/CA-2000-15.html http://www.securityfocus.com/bid/1545 http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000805020429.11774.qmail@securityfocus.com http://www.securityfocus.com/templates/archive.pike?list=1&msg=3999922128E.EE84TAKAGI@java-house.etl.go.jp