CVE-2004-0763

Mozilla Firefox 0.9.1 and 0.9.2 - Certificate Spoofing via Redirect and onunload JavaScript

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2004-0763. PoCs published by E.Kellinis.

AI-analyzed exploit summary This exploit demonstrates a spoofing vulnerability in Mozilla and Firefox, allowing an attacker to spoof the URI and SSL certificate of a trusted site. It uses a combination of HTML meta refresh and JavaScript to manipulate the displayed content and reload the page, creating a phishing opportunity.

Description

Mozilla Firefox 0.9.1 and 0.9.2 allows remote web sites to spoof certificates of trusted web sites via redirects and Javascript that uses the "onunload" method.

Exploits (2)

exploitdb WORKING POC VERIFIED
by E.Kellinis · htmlremotelinux
https://www.exploit-db.com/exploits/24312

This exploit demonstrates a spoofing vulnerability in Mozilla and Firefox, allowing an attacker to spoof the URI and SSL certificate of a trusted site. It uses a combination of HTML meta refresh and JavaScript to manipulate the displayed content and reload the page, creating a phishing opportunity.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Mozilla and Firefox (versions affected by CVE-2004-0763)
No auth needed
Prerequisites: User interaction required to visit the malicious webpage
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by E.Kellinis · htmlremotewindows
https://www.exploit-db.com/exploits/24069

This is a writeup describing a certificate spoofing vulnerability in Microsoft Internet Explorer 6. The provided HTML code demonstrates a meta-refresh technique to redirect users to a foreign domain, potentially misleading them into trusting a spoofed certificate.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Microsoft Internet Explorer 6
No auth needed
Prerequisites: User interaction required to visit a malicious webpage
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (15)

Core 15
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2004-421.html
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200408-22.xml
Patch, Vendor Advisory x_refsource_confirm
http://bugzilla.mozilla.org/show_bug.cgi?id=253121
Various Sources vendor-advisory x_refsource_sco
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
Vendor Advisory vendor-advisory x_refsource_suse
http://www.novell.com/linux/security/advisories/2004_36_mozilla.html
Mailing List mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/024372.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/12160/
Mailing List vendor-advisory x_refsource_fedora
http://marc.info/?l=bugtraq&m=109900315219363&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16796
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109087067730938&w=2
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9436
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3989
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15495

Scores

EPSS 0.0574
EPSS Percentile 92.1%

Details

Status published
Products (2)
mozilla/firefox 0.9.1
mozilla/firefox 0.9.2
Published Aug 18, 2004
Tracked Since Feb 18, 2026