Heap-based buffer overflow in the Hrtbeat.ocx (Heartbeat) ActiveX control for Internet Explorer 5.01 through 6, when users who visit online gaming sites that are associated with MSN, allows remote attackers to execute arbitrary code via the SetupData parameter.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=110616221411579&w=2 | Issue Tracking Third Party Advisory |
http://www.kb.cert.org/vuls/id/673134 | Third Party Advisory US Government Resource |
http://www.ngssoftware.com/advisories/heartbeatfull.txt | Broken Link |
http://www.securityfocus.com/bid/11367 | Third Party Advisory VDB Entry |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17714 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2004-10-21T04:00:00
Updated: 2018-10-12T19:57:01
Reserved: 2004-10-20T00:00:00
Link: CVE-2004-0978
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-02-09T05:00:00.000
Modified: 2020-12-09T18:35:02.590
Link: CVE-2004-0978
JSON object: View
Redhat Information
No data.
CWE