Home
|
View Topics
|
Search
|
Contact Us
|
Security
Tracker
Archives
Category:
Application (Web Browser)
>
Opera
Vendors:
Opera Software
Opera Unspecified Flaw Permits Cross-Site Scripting Attacks
SecurityTracker Alert ID:
1020719
SecurityTracker URL:
http://securitytracker.com/id/1020719
CVE Reference:
CVE-2008-4196
(Links to External Site)
Updated:
Sep 3 2009
Original Entry Date:
Aug 20 2008
Impact:
Disclosure of authentication information
,
Disclosure of user information
,
Execution of arbitrary code via network
,
Modification of user information
Fix Available:
Yes
Vendor Confirmed:
Yes
Version(s):
prior to 9.52
Description:
A vulnerability was reported in Opera. A remote user can conduct cross-site scripting attacks.
A remote user can cause arbitrary scripting code to be executed by the target user's browser. No details were provided.
Chris Weber of Casaba Security reported this vulnerability.
Impact:
A remote user can conduct cross-site scripting attacks.
Solution:
The vendor has issued a fixed version (9.52).
The vendor's advisory is available at:
http://www.opera.com/docs/changelogs/windows/952/
Vendor URL:
www.opera.com/docs/changelogs/windows/952/
(Links to External Site)
Cause:
Input validation error
Underlying OS:
Linux (Any)
,
UNIX (FreeBSD)
,
UNIX (macOS/OS X)
,
UNIX (Solaris - SunOS)
,
Windows (Any)
Message History:
None.
Source Message Contents
[Original Message Not Available for Viewing]
Go to the Top of This
Security
Tracker Archive Page
Home
|
View Topics
|
Search
|
Contact Us
This web site uses cookies for web analytics.
Learn More
Copyright 2019, SecurityGlobal.net LLC
Source Message Contents