CVE-2004-0648
Mozilla Suite/Firefox/Thunderbird <1.7.1/<0.9.2/<0.7.2 - RCE
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-0648. PoCs published by Keith McCanless.
AI-analyzed exploit summary This exploit leverages a weakness in Mozilla Internet Browser to execute arbitrary external protocols without user interaction. It involves creating a shortcut in the 'shell:NETHOOD' directory and executing a malicious file via an HTML IMG tag.
Description
Mozilla (Suite) before 1.7.1, Firefox before 0.9.2, and Thunderbird before 0.7.2 allow remote attackers to launch arbitrary programs via a URI referencing the shell: protocol.
Exploits (1)
This exploit leverages a weakness in Mozilla Internet Browser to execute arbitrary external protocols without user interaction. It involves creating a shortcut in the 'shell:NETHOOD' directory and executing a malicious file via an HTML IMG tag.