CVE DATABASE / CVE-2005-2271
CVE-2005-2271
CVSS 2.6 · LOW
Summary
iCab 2.9.8 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."
CVSS 2.0 breakdown
| Base score | 2.6 (LOW) |
| Vector | AV:N/AC:H/Au:N/C:N/I:P/A:N |
| Attack vector | NETWORK |
| Attack complexity | HIGH |
| Confidentiality | NONE |
| Integrity | PARTIAL |
| Availability | NONE |
Affected products
Alexander_clauss icab
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://secunia.com/advisories/15477
- http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.