Opera Multiple Vulnerabilities

Last Update Date: 15 Jun 2012 17:16 Release Date: 15 Jun 2012 5234 Views

RISK: Medium Risk

Medium Risk

TYPE: Clients - Browsers

TYPE: Browsers

Multiple vulnerabilities have been identified in Opera, which can be exploited by malicious people to conduct spoofing attacks and bypass certain security restrictions.

  1. An error when displaying preferences within a small window can be exploited to e.g. execute arbitrary code by tricking a user into entering a specific keyboard sequence.
  2. An error when displaying pop-up windows can be exploited to execute script code by tricking a user into following a specific sequence of events.
  3. An error when handling JSON resources can be exploited to bypass the cross-domain policy restriction and disclose certain information to other sites.
  4. An unspecified error can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar.
  5. An error when handling page loads can be exploited to display arbitrary content while showing the URL of a trusted web site in the address bar.

Impact

  • Security Restriction Bypass
  • Spoofing

System / Technologies affected

  • Opera 11.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to version 12 or update to version 11.65 for Mac.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

VMware Products Multiple Vulnerabilities

15 Jun 2012 4760 Views

Next

Microsoft Windows OpenType Font Processing Denial of Service Vulnerability

15 Jun 2012 5088 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY