Netscape Communicator does not properly prevent a ServerSocket object from being created by untrusted entities, which allows remote attackers to create a server on the victims system via a malicious applet, as demonstrated by Brown Orifice.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Virtual_machine | Microsoft | 2000 (including) | 2000 (including) |
| Virtual_machine | Microsoft | 3100 (including) | 3100 (including) |
| Virtual_machine | Microsoft | 3200 (including) | 3200 (including) |
| Virtual_machine | Microsoft | 3300 (including) | 3300 (including) |
| Communicator | Netscape | 4.0 (including) | 4.0 (including) |
| Communicator | Netscape | 4.04 (including) | 4.04 (including) |
| Communicator | Netscape | 4.05 (including) | 4.05 (including) |
| Communicator | Netscape | 4.5 (including) | 4.5 (including) |
| Communicator | Netscape | 4.06 (including) | 4.06 (including) |
| Communicator | Netscape | 4.6 (including) | 4.6 (including) |
| Communicator | Netscape | 4.07 (including) | 4.07 (including) |
| Communicator | Netscape | 4.7 (including) | 4.7 (including) |
| Communicator | Netscape | 4.08 (including) | 4.08 (including) |
| Communicator | Netscape | 4.51 (including) | 4.51 (including) |
| Communicator | Netscape | 4.61 (including) | 4.61 (including) |
| Communicator | Netscape | 4.72 (including) | 4.72 (including) |
| Communicator | Netscape | 4.73 (including) | 4.73 (including) |
| Communicator | Netscape | 4.74 (including) | 4.74 (including) |