CVSS: 6.5EPSS: 0%CPEs: 117EXPL: 0CVE-2011-2638 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-2638
01 Jul 2011 — Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by games on zylom.com. Vulnerabilidad no especificada en Opera anterior a v11.10 permite a atacantes remotos causar una denegación de servicio (caída de aplicación) a través de contenidos desconocidos en una página web, como lo demuestran los juegos en zylom.com. Multiple vulnerabilities have been found in Opera, the worst of which allow ... • http://www.opera.com/docs/changelogs/mac/1110 •
CVSS: 7.5EPSS: 0%CPEs: 117EXPL: 0CVE-2011-2639 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-2639
01 Jul 2011 — Opera before 11.10 does not properly handle hidden animated GIF images, which allows remote attackers to cause a denial of service (CPU consumption) via an image file that triggers continual repaints. Opera anterior a v11.10 no maneja correctamente imágenes animadas GIF, lo que permite a atacantes remotos provocar una denegación de servicio (consumo de CPU) a través de un archivo de imagen que provoca un pintado de la misma de forma continua. Multiple vulnerabilities have been found in Opera, the worst of w... • http://www.opera.com/docs/changelogs/mac/1110 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 117EXPL: 0CVE-2011-2640 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-2640
01 Jul 2011 — Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via an HTML document that has an empty parameter value for an embedded Java applet. Opera anterior a v11.10 permite a atacantes remotos causar una denegación de servicio (caída de la aplicación) a través de un documento HTML que contiene un valor de parámetro vacío para un applet de Java embebido. Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary code. Versions... • http://www.opera.com/docs/changelogs/mac/1110 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 121EXPL: 0CVE-2011-2610 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-2610
01 Jul 2011 — Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue." Vulnerabilidad no especificada en Opera anterior a v11.50 tiene un impacto y vectores de ataque desconocidos, en relación con un "problema de gravedad moderada". Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary code. Versions less than 12.00.1467 are affected. • http://www.opera.com/docs/changelogs/mac/1150 •
CVSS: 10.0EPSS: 18%CPEs: 118EXPL: 2CVE-2011-2628 – Opera 10/11 - Bad Nesting with Frameset Tag Memory Corruption
https://notcve.org/view.php?id=CVE-2011-2628
01 Jul 2011 — Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to page unload. Opera anterior a v11.11 no implementa correctamente los elementos FRAMESET, permitiendo a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores relacionados con la página de descarga. Multiple vulnerabilities have been found in Opera... • https://packetstorm.news/files/id/105598 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 7%CPEs: 108EXPL: 1CVE-2011-1824 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-1824
09 May 2011 — The VEGAOpBitmap::AddLine function in Opera before 10.61 does not properly initialize memory during processing of the SIZE attribute of a SELECT element, which allows remote attackers to trigger an invalid memory write operation, and consequently cause a denial of service (application crash) or possibly execute arbitrary code, via a large integer attribute value. La función VEGAOpBitmap::AddLine en Opera antes de v10.61 no inicializa correctamente la memoria durante el procesamiento del atributo SIZE de un ... • http://securityreason.com/securityalert/8244 • CWE-20: Improper Input Validation •
CVSS: 6.1EPSS: 0%CPEs: 113EXPL: 0CVE-2011-0681 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-0681
31 Jan 2011 — The Cascading Style Sheets (CSS) Extensions for XML implementation in Opera before 11.01 recognizes links to javascript: URLs in the -o-link property, which makes it easier for remote attackers to bypass CSS filtering via a crafted URL. La implementación de las Hojas de estilo en cascada (CSS) para XML en Opera anterior a v11.01 reconoce enlaces para javascript: URL's en la propiedad '-o-link', que permite hacer más fácil para atacantes remotos saltarse el filtro CSS a través de una URL manipulada. Multiple... • http://osvdb.org/70727 •
CVSS: 4.3EPSS: 1%CPEs: 113EXPL: 0CVE-2011-0683 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-0683
31 Jan 2011 — Opera before 11.01 does not properly restrict the use of opera: URLs, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site. Opera anterior v.11.01 no restringe correctamente el uso de Opera: URLs, que hace más fácil para los atacantes remotos conducir un ataque de "clickjacking" a través de un sitio web manipulado. Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary code. Versions less than 12.00.1467 are aff... • http://osvdb.org/70729 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 113EXPL: 0CVE-2011-0684 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-0684
31 Jan 2011 — Opera before 11.01 does not properly handle redirections and unspecified other HTTP responses, which allows remote web servers to obtain sufficient access to local files to use these files as page resources, and consequently obtain potentially sensitive information from the contents of the files, via an unknown response manipulation. Opera anterior a v11.01 no controla correctamente las redirecciones y otras respuestas HTTP no especificadas, que permite a los servidores Web remotos obtener acceso suficiente... • http://osvdb.org/70730 • CWE-20: Improper Input Validation •
CVSS: 9.1EPSS: 0%CPEs: 113EXPL: 0CVE-2011-0685 – Gentoo Linux Security Advisory 201206-03
https://notcve.org/view.php?id=CVE-2011-0685
31 Jan 2011 — The Delete Private Data feature in Opera before 11.01 does not properly implement the "Clear all email account passwords" option, which might allow physically proximate attackers to access an e-mail account via an unattended workstation. La característica de borrado de datos privados en Opera anterior a v11.01 no implementa adecuadamente la opción "Borrar todas las contraseñas de cuenta de correo electrónico", que podría permitir a atacantes físicamente próximos acceder a una cuenta de correo electrónico a ... • http://osvdb.org/70731 • CWE-20: Improper Input Validation •