CVE-2004-0978
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD
Description
Heap-based buffer overflow in the Hrtbeat.ocx (Heartbeat) ActiveX control for Internet Explorer 5.01 through 6, when users who visit online gaming sites that are associated with MSN, allows remote attackers to execute arbitrary code via the SetupData parameter.
Affected (5)
Products: Microsoft: Internet Explorer
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 5.01 sp3 |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 5.5 sp2 |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 6 |
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows Server 2003 | All versions |
Microsoft Windows Xp | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 6 sp1 |
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 2000 | All versions |
Microsoft Windows 98se | All versions |
Microsoft Windows Me | All versions |
Microsoft Windows Nt | Version 4.0 sp6 |
Microsoft Windows Xp | All versions |
References (12)
Source: cve@mitre.org
Issue TrackingThird Party Advisory
Source: cve@mitre.org
Third Party AdvisoryUS Government Resource
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Timeline
No history available yet.