VYPR

Icab

by Alexander Clauss

CVEs (2)

  • CVE-2010-1101Mar 24, 2010
    risk 0.00cvss epss 0.01

    Integer overflow in Alexander Clauss iCab allows remote attackers to bypass intended port restrictions on outbound TCP connections via a port number outside the range of the unsigned short data type, as demonstrated by a value of 65561 for TCP port 25.

  • CVE-2005-2271Jul 13, 2005
    risk 0.00cvss epss 0.01

    iCab 2.9.8 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."