CVE-2004-1380

CVE Database · CVE-2004-1380

CVE-2004-1380

· N/AModified

CVSS v3.1

N/A

EPSS

3.68%

Published

Oct 20, 2004

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBMultiple Browsers - Tabbed Browsing

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoofing Vulnerability."

Affected Products (30)

mozilla · firefoxvulnerable

mozilla · mozillavulnerable

· mozilla

References (18)

http://secunia.com/advisories/12712

PatchVendor Advisory

http://secunia.com/multiple_browsers_dialog_box_spoofing_test/

Vendor Advisory

http://secunia.com/multiple_browsers_form_field_focus_test/

Vendor Advisory

http://www.mozilla.org/security/announce/mfsa2005-05.html

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-323.html

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2005-335.html

Patch

KEV Catalog EPSS Scores Vendors All CVEs