{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2004-10-12T00:00:00.000Z","descriptions":[{"lang":"en","value":"Heap-based buffer overflow in the Hrtbeat.ocx (Heartbeat) ActiveX control for Internet Explorer 5.01 through 6, when users who visit online gaming sites that are associated with MSN, allows remote attackers to execute arbitrary code via the SetupData parameter."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-12T19:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"20050119 MSN Heartbeat Control Buffer Overflow","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://marc.info/?l=bugtraq&m=110616221411579&w=2"},{"name":"VU#673134","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"http://www.kb.cert.org/vuls/id/673134"},{"name":"MS04-038","tags":["vendor-advisory","x_refsource_MS"],"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038"},{"name":"heartbeat-activex(17714)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/17714"},{"name":"11367","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/11367"},{"tags":["x_refsource_MISC"],"url":"http://www.ngssoftware.com/advisories/heartbeatfull.txt"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2004-0978","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Heap-based buffer overflow in the Hrtbeat.ocx (Heartbeat) ActiveX control for Internet Explorer 5.01 through 6, when users who visit online gaming sites that are associated with MSN, allows remote attackers to execute arbitrary code via the SetupData parameter."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"20050119 MSN Heartbeat Control Buffer Overflow","refsource":"BUGTRAQ","url":"http://marc.info/?l=bugtraq&m=110616221411579&w=2"},{"name":"VU#673134","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/673134"},{"name":"MS04-038","refsource":"MS","url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038"},{"name":"heartbeat-activex(17714)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/17714"},{"name":"11367","refsource":"BID","url":"http://www.securityfocus.com/bid/11367"},{"name":"http://www.ngssoftware.com/advisories/heartbeatfull.txt","refsource":"MISC","url":"http://www.ngssoftware.com/advisories/heartbeatfull.txt"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-08T00:39:00.395Z"},"title":"CVE Program Container","references":[{"name":"20050119 MSN Heartbeat Control Buffer Overflow","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://marc.info/?l=bugtraq&m=110616221411579&w=2"},{"name":"VU#673134","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"http://www.kb.cert.org/vuls/id/673134"},{"name":"MS04-038","tags":["vendor-advisory","x_refsource_MS","x_transferred"],"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038"},{"name":"heartbeat-activex(17714)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/17714"},{"name":"11367","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/11367"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.ngssoftware.com/advisories/heartbeatfull.txt"}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2004-0978","datePublished":"2004-10-21T04:00:00.000Z","dateReserved":"2004-10-20T00:00:00.000Z","dateUpdated":"2024-08-08T00:39:00.395Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}