CVE-2004-0648

N/A Unknown

Published: August 06, 2004 Modified: April 16, 2026

Description

Mozilla (Suite) before 1.7.1, Firefox before 0.9.2, and Thunderbird before 0.7.2 allow remote attackers to launch arbitrary programs via a URI referencing the shell: protocol.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023573.html

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108938712815719&w=2

Source: cve@mitre.org

http://secunia.com/advisories/12027

Source: cve@mitre.org

http://www.ciac.org/ciac/bulletins/o-175.shtml

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/927014

Source: cve@mitre.org

Third Party Advisory US Government Resource

http://www.mozilla.org/projects/security/known-vulnerabilities.html

Source: cve@mitre.org

http://www.mozilla.org/security/shell.html

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/16655

Source: cve@mitre.org

http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023573.html