[原文]Netscape Communicator 4.04 through 4.7 (and possibly other versions) in various UNIX operating systems converts the 0x8b character to a "<" sign, and the 0x9b character to a ">" sign, which could allow remote attackers to attack other clients via cross-site scripting (CSS) in CGI programs that do not filter these characters.
Netscape Communicator contains a flaw that may allow a cause certain pages to render incorrectly and may allow a malicious user to perform a cross site scripting attack. The issue is triggered when, on certain Unix systems, 0x8b and 0x9b are converted to '<' and '>' respectively. It is possible that the flaw may allow a malicious user to execute arbitrary script code in the victim's browser resulting in a loss of integrity.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.