Intrusion PreventionMozilla.Firefox.Shell.Arbitrary.Command.Execution
Description
This indicates a possible exploit of a vulnerability in the Mozilla Internet Browser.
This vulnerability is caused by Mozilla's inadequate restriction of access to the "shell" URI handler. Remote attackers may exploit this to execute arbitrary programs.
Affected Products
Netscape Navigator 7.1
Mozilla Thunderbird 0.7.1
Mozilla Firefox 0.9.1
Mozilla Browser 1.7 rc3
K-Meleon K-Meleon 0.8.2
And earlier versions of the above.
Impact
System compromise
Recommended Actions
Upgrade to K-Meleon version 0.9.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-10-12 | 16.941 | Name:Mozilla. Shell. Arbitrary. Command. Execution:Mozilla. Firefox. Shell. Arbitrary. Command. Execution |
| ID | 10540 |
| Created | Aug 10, 2005 |
| Updated | Jan 13, 2022 |
| Risk |
|
| CVE ID | CVE-2004-0648 |
| Exploit Prediction Score | 7.67% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux |
| Affected App | Mozilla |