CVSS: 9.8EPSS: 9%CPEs: 1EXPL: 0CVE-2006-3198
https://notcve.org/view.php?id=CVE-2006-3198
23 Jun 2006 — Integer overflow in Opera 8.54 and earlier allows remote attackers to execute arbitrary code via a JPEG image with large height and width values, which causes less memory to be allocated than intended. Desbordamiento de entero en Opera v8.54 y anteriores permite a atacantes remotos ejecutar código de su elección a través de una imagen JPEG con medidas excesivas de ancho y largo, lo que provoca se reserve menos memoria de la que se requiere. • http://secunia.com/advisories/20787 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 15%CPEs: 88EXPL: 4CVE-2006-1834 – Opera Web Browser 8.52 - Stylesheet Attribute Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-1834
19 Apr 2006 — Integer signedness error in Opera before 8.54 allows remote attackers to execute arbitrary code via long values in a stylesheet attribute, which pass a length check. NOTE: a sign extension problem makes the attack easier with shorter strings. Error de entero sin signo en Opera en versiones anteriores a 8.54 permite a atacantes remotos ejecutar código arbitrario a través de valores largos en un atributo de la hoja de estilos, lo que pasa una verificación de longitud. NOTA: un problema de extensión de signo h... • https://www.exploit-db.com/exploits/27641 • CWE-189: Numeric Errors •
CVSS: 6.5EPSS: 10%CPEs: 1EXPL: 5CVE-2005-4718 – Opera 8.02 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-4718
31 Dec 2005 — Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute. • https://www.exploit-db.com/exploits/1254 •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 1CVE-2005-4210
https://notcve.org/view.php?id=CVE-2005-4210
13 Dec 2005 — Opera before 8.51, when running on Windows with Input Method Editor (IME) installed, allows remote attackers to cause a denial of service (persistent application crash) by bookmarking a site with a long title. • http://secunia.com/advisories/17963 •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 3CVE-2005-3946
https://notcve.org/view.php?id=CVE-2005-3946
01 Dec 2005 — Opera 8.50 allows remote attackers to cause a denial of service (crash) via a Java applet with a large string argument to the removeMember JNI method for the com.opera.JSObject class. • http://www.illegalaccess.org/exploit/opera85/OperaApplet.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 7%CPEs: 1EXPL: 0CVE-2005-3750
https://notcve.org/view.php?id=CVE-2005-3750
22 Nov 2005 — Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera. Opera anterior a 8.51 en sistemas Linux y Unix permite a atacantes remotos ejecutar código de su elección mediante metacaractérs de 'shell' ('backticks') en una URL que otro producto provee en un argumento de línea de comandos cuando se lanza Opera. • http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0677.html • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 1CVE-2005-3699
https://notcve.org/view.php?id=CVE-2005-3699
21 Nov 2005 — Opera Web Browser 8.50 and 8.0 through 8.0.2 allows remote attackers to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site. • http://secunia.com/advisories/17571 •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2005-3059
https://notcve.org/view.php?id=CVE-2005-3059
26 Sep 2005 — Multiple unspecified vulnerabilities in Opera 8.50 on Linux and Windows have unknown impact and attack vectors, related to (1) " handling of must-revalidate cache directive for HTTPS pages" or (2) a "display issue with cookie comment encoding." • http://secunia.com/advisories/16645 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3041
https://notcve.org/view.php?id=CVE-2005-3041
22 Sep 2005 — Unspecified "drag-and-drop vulnerability" in Opera Web Browser before 8.50 on Windows allows "unintentional file uploads." • http://www.opera.com/docs/changelogs/windows/850 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2005-3007
https://notcve.org/view.php?id=CVE-2005-3007
21 Sep 2005 — Opera before 8.50 allows remote attackers to spoof the content type of files via a filename with a trailing "." (dot), which might allow remote attackers to trick users into processing dangerous content. • http://marc.info/?l=bugtraq&m=112724692219695&w=2 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •