Synopsis
The remote host is vulnerable to a Cross-Site Scripting (XSS) attack.
Description
The remote host is running NetCaptor. NetCaptor is a web browser that is installed 'over' Internet Explorer, using the IE core engine while adding functionality to the GUI. This version of NetCaptor is vulnerable to a flaw where a malicious website can spoof a domain via the Dialog box. An attacker exploiting this flaw may be able to access confidential data from the client.
Solution
Upgrade or patch according to vendor recommendations.
Plugin Details
Risk Information
Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:N
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Temporal Vector: CVSS:3.0/E:H/RL:U/RC:X