Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-1381
HistoryJan 29, 2005 - 5:00 a.m.

CVE-2004-1381

2005-01-2905:00:00
mitre
web.nvd.nist.gov
39
firefox
mozilla
cve-2004-1381
security vulnerability
phishing
sensitive data theft

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

High

EPSS

0.167

Percentile

96.1%

JSON

Firefox before 1.0 and Mozilla before 1.7.5 allow inactive (background) tabs to focus on input being entered in the active tab, as originally reported using form fields, which allows remote attackers to steal sensitive data that is intended for other sites, which could facilitate phishing attacks.

Affected configurations

Nvd
Node
mozillafirefoxMatch0.8
OR
mozillafirefoxMatch0.9
OR
mozillafirefoxMatch0.9rc
OR
mozillafirefoxMatch0.9.1
OR
mozillafirefoxMatch0.9.2
OR
mozillafirefoxMatch0.9.3
OR
mozillafirefoxMatch0.10
OR
mozillafirefoxMatch0.10.1
OR
mozillamozilla
OR
mozillamozillaMatch1.3
OR
mozillamozillaMatch1.4
OR
mozillamozillaMatch1.4alpha
OR
mozillamozillaMatch1.4.1
OR
mozillamozillaMatch1.5
OR
mozillamozillaMatch1.5alpha
OR
mozillamozillaMatch1.5rc1
OR
mozillamozillaMatch1.5rc2
OR
mozillamozillaMatch1.5.1
OR
mozillamozillaMatch1.6
OR
mozillamozillaMatch1.6alpha
OR
mozillamozillaMatch1.6beta
OR
mozillamozillaMatch1.7
OR
mozillamozillaMatch1.7alpha
OR
mozillamozillaMatch1.7beta
OR
mozillamozillaMatch1.7rc1
OR
mozillamozillaMatch1.7rc2
OR
mozillamozillaMatch1.7rc3
OR
mozillamozillaMatch1.7.1
OR
mozillamozillaMatch1.7.2
OR
mozillamozillaMatch1.7.3
VendorProductVersionCPE
mozillafirefox0.8cpe:2.3:a:mozilla:firefox:0.8:*:*:*:*:*:*:*
mozillafirefox0.9cpe:2.3:a:mozilla:firefox:0.9:*:*:*:*:*:*:*
mozillafirefox0.9cpe:2.3:a:mozilla:firefox:0.9:rc:*:*:*:*:*:*
mozillafirefox0.9.1cpe:2.3:a:mozilla:firefox:0.9.1:*:*:*:*:*:*:*
mozillafirefox0.9.2cpe:2.3:a:mozilla:firefox:0.9.2:*:*:*:*:*:*:*
mozillafirefox0.9.3cpe:2.3:a:mozilla:firefox:0.9.3:*:*:*:*:*:*:*
mozillafirefox0.10cpe:2.3:a:mozilla:firefox:0.10:*:*:*:*:*:*:*
mozillafirefox0.10.1cpe:2.3:a:mozilla:firefox:0.10.1:*:*:*:*:*:*:*
mozillamozilla*cpe:2.3:a:mozilla:mozilla:*:*:*:*:*:*:*:*
mozillamozilla1.3cpe:2.3:a:mozilla:mozilla:1.3:*:*:*:*:*:*:*
Rows per page:
1-10 of 301

Related

nvd 1
ubuntucve 1
cvelist 1
exploitdb 1
ubuntu 1
openvas 1
nessus 1
nvd
nvd
CVE-2004-1381
2004-10-20 04:00:00
ubuntucve
ubuntucve
CVE-2004-1381
2004-10-20 00:00:00
cvelist
cvelist
CVE-2004-1381
2005-01-29 05:00:00
exploitdb
exploitdb
Multiple Browsers - Tabbed Browsing
2004-10-22 00:00:00
ubuntu
ubuntu
Ubuntu 4.10 update for Firefox vulnerabilities
2005-07-28 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-149-3)
2022-08-26 00:00:00
nessus
nessus
Ubuntu 4.10 : mozilla-firefox vulnerabilities (USN-149-3)
2006-01-15 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

High

EPSS

0.167

Percentile

96.1%

JSON
Related for CVE-2004-1381
nvd1ubuntucve1cvelist1exploitdb1ubuntu1openvas1nessus1