CVE-1999-0685

Netscape Communicator - Buffer Overflow via EMBED Tag Pluginspage Option

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0685. PoCs published by R00t Zer0.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Netscape Communicator 4.x via a maliciously crafted EMBED tag. It generates an HTML page with shellcode to execute arbitrary commands (e.g., 'welcome.exe') on Windows 98 systems.

Description

Buffer overflow in Netscape Communicator via EMBED tags in the pluginspage option.

Exploits (1)

exploitdb WORKING POC VERIFIED

by R00t Zer0 · cremotewindows

https://www.exploit-db.com/exploits/19486

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Netscape Communicator 4.x via a maliciously crafted EMBED tag. It generates an HTML page with shellcode to execute arbitrary commands (e.g., 'welcome.exe') on Windows 98 systems.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Netscape Communicator 4.06J - 4.6J, 4.61e

No auth needed

Prerequisites: Victim must visit a malicious webpage using vulnerable Netscape Communicator version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/618

Scores

EPSS 0.0159

EPSS Percentile 72.5%

Details

Status published

Products (5)

netscape/communicator 4.5

netscape/communicator 4.06

netscape/communicator 4.6

netscape/communicator 4.51

netscape/communicator 4.61

Published Sep 02, 1999

Tracked Since Feb 18, 2026