CVE-2001-0596

Netscape Communicator < 4.77 - Remote Code Execution via GIF Image Comment

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0596. PoCs published by Florian Wesch.

AI-analyzed exploit summary This exploit leverages a flaw in Netscape Navigator 4.76 where JavaScript embedded in a GIF comment is executed in the 'about:' domain, allowing access to browser history. The PoC constructs a malicious GIF with embedded JavaScript to extract and display the top 10 URLs from the victim's browsing history.

Description

Netscape Communicator before 4.77 allows remote attackers to execute arbitrary Javascript via a GIF image whose comment contains the Javascript.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Florian Wesch · phpremoteunix

https://www.exploit-db.com/exploits/20791

View Code ZIP pw:eip

This exploit leverages a flaw in Netscape Navigator 4.76 where JavaScript embedded in a GIF comment is executed in the 'about:' domain, allowing access to browser history. The PoC constructs a malicious GIF with embedded JavaScript to extract and display the top 10 URLs from the victim's browsing history.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: Netscape Navigator 4.76

No auth needed

Prerequisites: Victim must be using Netscape Navigator 4.76 · Victim must visit the malicious PHP page

MITRE ATT&CK