CVE-2004-1380

Firefox - Dialog Box Spoofing via Background Tab

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1380.

AI-analyzed exploit summary This is a functional proof-of-concept for a cross-site scripting (XSS) vulnerability that captures keystrokes from a user interacting with Citibank's website by leveraging a malicious link with an onMouseOver event handler.

Description

Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the "Dialog Box Spoofing Vulnerability."

Exploits (1)

exploitdb WORKING POC

htmlremotewindows

https://www.exploit-db.com/exploits/589

View Code ZIP pw:eip

This is a functional proof-of-concept for a cross-site scripting (XSS) vulnerability that captures keystrokes from a user interacting with Citibank's website by leveraging a malicious link with an onMouseOver event handler.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Citibank website (2004)

No auth needed

Prerequisites: User interaction (hovering over the link)

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (9)

Core 9

Core References

Patch, Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2005-323.html

Patch, Vendor Advisory x_refsource_confirm

http://www.mozilla.org/security/announce/mfsa2005-05.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A100050

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/18864

Patch, Vendor Advisory vendor-advisory x_refsource_redhat

http://www.redhat.com/support/errata/RHSA-2005-335.html

Vendor Advisory x_refsource_misc

http://secunia.com/multiple_browsers_form_field_focus_test/

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/12712

Vendor Advisory x_refsource_misc

http://secunia.com/multiple_browsers_dialog_box_spoofing_test/

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10211

Scores

EPSS 0.1450

EPSS Percentile 94.6%

Details

Status published

Products (18)

mozilla/firefox 0.8

mozilla/firefox 0.9 (2 CPE variants)

mozilla/firefox 0.9.1

mozilla/firefox 0.9.2

mozilla/firefox 0.9.3

mozilla/firefox 0.10

mozilla/firefox 0.10.1

mozilla/mozilla

mozilla/mozilla 1.3

mozilla/mozilla 1.4 (2 CPE variants)

... and 8 more

Published Oct 20, 2004

Tracked Since Feb 18, 2026