EIP-2026-103991

PRE-CVE

Mozilla Browser 1.5 - URI MouseOver Obfuscation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103991. PoCs published by netmask.

AI-analyzed exploit summary The writeup describes a URI obfuscation vulnerability in the Mozilla browser where a NULL byte (%00) in a user@location URI can hide the true destination of a link during mouseover. This could be exploited to trick users into clicking malicious links by displaying only the trusted portion of the URL.

Description

Mozilla Browser 1.5 - URI MouseOver Obfuscation

Exploits (1)

exploitdb WRITEUP VERIFIED

by netmask · textremotemultiple

https://www.exploit-db.com/exploits/23433

View Code ZIP pw:eip

The writeup describes a URI obfuscation vulnerability in the Mozilla browser where a NULL byte (%00) in a user@location URI can hide the true destination of a link during mouseover. This could be exploited to trick users into clicking malicious links by displaying only the trusted portion of the URL.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Mozilla browser (version not specified)

No auth needed

Prerequisites: User interaction (mouseover and click)

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026