Opera Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 13 Oct 2010 4753 Views

RISK: Medium Risk

Medium Risk

Multiple vulnerabilities have been identified in Opera, which could allow attackers to gain knowledge of certain information, manipulate data or execute arbitrary code.

1. An error when handling CSS files, which could allow cross domain scripting attacks.

2. An error when manipulating the window, which could cause the wrong part of the Web page address to be displayed in the Address Bar and allows attackers to spoof the page address.

3. An error when handling reloads and redirects, which could allow spoofing and cross-site scripting, or the modification of Opera's configuration and execution of arbitrary code with minimal user interaction.

4. The browser not checking a video's origin correctly which could allow attackers to intercept video streams.

5. An issue when displaying error pages along with a link to the invalid URL, which could allow cross domain scripting attacks by convincing a user to interact with a specially crafted error page.

Impact

  • Cross-Site Scripting
  • Remote Code Execution
  • Spoofing

System / Technologies affected

  • Opera version 10.62 and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Oracle Multiple Vulnerabilities

13 Oct 2010 4686 Views

Next

Oracle Sun StarOffice / StarSuite Multiple Vulnerabilities

14 Oct 2010 4677 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY