Lucene search
HistoryJul 13, 2005 - 4:00 a.m.
CVE-2005-2271
icab
2.9.8
javascript
dialog box
spoofing
phishing
vulnerability
nvd
6.7 Medium
AI Score
Confidence
Low
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.0%
iCab 2.9.8 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the βDialog Origin Spoofing Vulnerability.β
| CPE | Name | Operator | Version |
|---|---|---|---|
| alexander_clauss:icab | alexander clauss icab | eq | 2.9.8 |
Related
nessus
nessus
Debian DSA-810-1 : mozilla - several vulnerabilities
2005-09-13 00:00:00
Mandrake Linux Security Advisory : mozilla (MDKSA-2005:128)
2005-10-05 00:00:00
Debian DSA-779-2 : mozilla-firefox - several vulnerabilities
2005-08-23 00:00:00
6.7 Medium
AI Score
Confidence
Low
2.6 Low
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
48.0%
Related for CVE-2005-2271