← CVECheck
HomeVulnerabilities

CVE-2002-2013 — MEDIUM severity vulnerability (Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allow)

Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.

CVE IDCVE-2002-2013
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-12-31
Last modified2026-04-16
DescriptionMozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →