SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (Web Browser)  >   Opera Vendors:   Opera Software
Opera Bugs Let Remote Users Obtain Information and Display Misleading Security Information
SecurityTracker Alert ID:  1024909
SecurityTracker URL:  http://securitytracker.com/id/1024909
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Dec 17 2010
Impact:   Disclosure of user information, Modification of system information, Not specified
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 11.00
Description:   Several vulnerabilities were reported in Opera. A remote user can display misleading security information. A remote user can obtain WAP form content. The impact of some vulnerabilities was not disclosed.

Specially crafted web page content can display misleading security information.

When accepting user input in form fields on a WAP page, the browser may populate similarly named inputs on other sites.

Two other issues were reference but no details were provided.
Impact:   A remote user can display misleading security information.

A remote user can obtain WAP form content.

The impact of some vulnerabilities was not disclosed.
Solution:   The vendor has issued a fix (11).

The vendor's advisories are available at:

http://www.opera.com/docs/changelogs/unix/1100/
http://www.opera.com/docs/changelogs/windows/1100/
http://www.opera.com/docs/changelogs/mac/1100/
http://www.opera.com/support/kb/view/977/
http://www.opera.com/support/kb/view/979/
Vendor URL:  www.opera.com/docs/changelogs/windows/1100/ (Links to External Site)
Cause:   Not specified
Underlying OS:   Linux (Any), UNIX (FreeBSD), UNIX (OS X), UNIX (Solaris - SunOS), Windows (Any)

Message History:   None.

 Source Message Contents
Date:  Fri, 17 Dec 2010 23:27:09 +0000
Subject:  Opera


http://www.opera.com/docs/changelogs/unix/1100/
http://www.opera.com/docs/changelogs/windows/1100/
http://www.opera.com/docs/changelogs/mac/1100/

Security
Fixed

    * Fixed an issue where Web page content could display misleading security information; see our advisory (http://www.opera.com/support/search/view/977/).
    * Fixed an issue which could allow leaking of WAP form content to other sites; see our advisory (http://www.opera.com/support/search/view/979/).
    * Fixed a high severity issue; details will be disclosed at a later date.
    * Fixed further high severity issues; details will be disclosed at a later date.


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2013, SecurityGlobal.net LLC