CVE Vulnerabilities

CVE-2004-1380

Published: Oct 20, 2004 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Firefox before 1.0 and Mozilla before 1.7.5 allows inactive (background) tabs to launch dialog boxes, which can allow remote attackers to spoof the dialog boxes from web sites in other windows and facilitate phishing attacks, aka the Dialog Box Spoofing Vulnerability.

Affected Software

Name Vendor Start Version End Version
Firefox Mozilla 0.8 0.8
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.7 1.7
Firefox Mozilla 0.9.1 0.9.1
Firefox Mozilla 0.10.1 0.10.1
Firefox Mozilla 0.9 0.9
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.4.1 1.4.1
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla 1.3 1.3
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.4 1.4
Mozilla Mozilla 1.5 1.5
Mozilla Mozilla * *
Mozilla Mozilla 1.7.1 1.7.1
Firefox Mozilla 0.9.3 0.9.3
Mozilla Mozilla 1.4 1.4
Mozilla Mozilla 1.5.1 1.5.1
Firefox Mozilla 0.9.2 0.9.2
Mozilla Mozilla 1.7.2 1.7.2
Firefox Mozilla 0.9 0.9
Mozilla Mozilla 1.7 1.7
Mozilla Mozilla 1.7 1.7
Firefox Mozilla 0.10 0.10
Mozilla Mozilla 1.7.3 1.7.3
Mozilla Mozilla 1.6 1.6
Mozilla Mozilla 1.6 1.6

References