← CVECheck
HomeVulnerabilities

CVE-2002-1204 — MEDIUM severity vulnerability (Netscape Communicator 4.x allows attackers to use a link to)

Netscape Communicator 4.x allows attackers to use a link to steal a user's preferences, including potentially sensitive information such as URL history, e-mail address, and possibly the e-mail password, by redefining the user_pref() function and accessing the prefs.js file, which is stored in a directory with a predict

CVE IDCVE-2002-1204
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-11-29
Last modified2026-04-16
DescriptionNetscape Communicator 4.x allows attackers to use a link to steal a user's preferences, including potentially sensitive information such as URL history, e-mail address, and possibly the e-mail password, by redefining the user_pref() function and accessing the prefs.js file, which is stored in a directory with a predictable name.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →