CVE-2004-1381

CVE Database · CVE-2004-1381

CVE-2004-1381

· N/AModified

CVSS v3.1

N/A

EPSS

6.88%

Published

Oct 20, 2004

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBMultiple Browsers - Tabbed Browsing

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Firefox before 1.0 and Mozilla before 1.7.5 allow inactive (background) tabs to focus on input being entered in the active tab, as originally reported using form fields, which allows remote attackers to steal sensitive data that is intended for other sites, which could facilitate phishing attacks.

Affected Products (30)

mozilla · firefoxvulnerable

mozilla · mozillavulnerable

· mozilla

References (12)

http://secunia.com/advisories/12712

ExploitPatchVendor Advisory

http://secunia.com/multiple_browsers_dialog_box_spoofing_test/

Vendor Advisory

http://secunia.com/multiple_browsers_form_field_focus_test/

Vendor Advisory

http://www.mozilla.org/security/announce/mfsa2005-05.html

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17789

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100053

http://secunia.com/advisories/12712

KEV Catalog EPSS Scores Vendors All CVEs