iCab Web Browser Remote Window Hijacking
Low Nessus Network Monitor Plugin ID 2530
SynopsisThe remote host is vulnerable to a Cross-Site Scripting (XSS) attack.
DescriptionThe remote host is using a version of iCab that is prone to a security flaw that may allow a malicious website to influence a pop up window from a trusted site.
An attacker may exploit this flaw to impersonate third-party web servers and convince a victim on the remote host into revealing personal information.
SolutionNo solution is known at this time.