NotCVE - vendor:"Opera" product:"Opera Browser" version:"8.51"

Page 5 of 199 results (0.013 seconds)

CVSS: 7.5EPSS: 0%CPEs: 129EXPL: 0

CVE-2012-3567

https://notcve.org/view.php?id=CVE-2012-3567

14 Jun 2012 — Opera before 12.00 Beta allows remote attackers to cause a denial of service (memory consumption or application hang) via an IFRAME element that uses the src="#" syntax to embed a parent document. Opera antes de v12.00 Beta permite a atacantes remotos causar una denegación de servicio (por consumo de memoria o bloqueo de la aplicación) a través de un elemento IFRAME que utiliza un src="#" para incrustar un documento de nivel superior. • http://www.opera.com/docs/changelogs/windows/1200b •

CVSS: 7.6EPSS: 5%CPEs: 127EXPL: 0

CVE-2012-3555 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-3555

14 Jun 2012 — Opera before 11.65 does not ensure that keyboard sequences are associated with a visible window, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks or execute arbitrary code via a crafted web site, related to a "hidden keyboard navigation" issue. Opera antes de v11.65 no garantiza que las secuencias del teclado estén asociados con una ventana visible, lo que hace que sea más fácil para los atacantes remotos (con cierta ayuda del usuario local) a la hora de... • http://www.opera.com/docs/changelogs/mac/1165 •

CVSS: 4.3EPSS: 0%CPEs: 128EXPL: 0

CVE-2012-3560 – Opera 11.61 URL Spoof

https://notcve.org/view.php?id=CVE-2012-3560

14 Jun 2012 — Opera before 11.65 does not ensure that the address field corresponds to the displayed web page during blocked navigation, which makes it easier for remote attackers to conduct spoofing attacks by detecting and preventing attempts to load a different web page. Opera antes de v11.65 no garantiza que el campo de dirección corresponde a la página web que aparece durante la navegación bloqueada, lo que hace que facilita a los atacantes remotos el realizar ataques de suplantación de identidad mediante la detecci... • http://blog.vulnhunt.com/index.php/2012/06/14/cal-2012-0015-opera-website-spoof • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.9EPSS: 0%CPEs: 114EXPL: 0

CVE-2012-1251

https://notcve.org/view.php?id=CVE-2012-1251

04 Jun 2012 — Opera before 9.63 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Opera anteriores a v9.63 no verifica de forma adecuada los certificados X.509 de servidores SSL, los que permitiría ataques hombre en medio (man-in-the-middle) para espiar servidores y obtener información sensible a través de un certificado manipulado. • http://jvn.jp/en/jp/JVN39707339/index.html • CWE-310: Cryptographic Issues •

CVSS: 6.4EPSS: 1%CPEs: 126EXPL: 0

CVE-2012-1928 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-1928

28 Mar 2012 — Opera before 11.62 allows remote attackers to spoof the address field by triggering a page reload followed by a redirect to a different domain. Opera antes de v11.62 permite a atacantes remotos falsificar el campo de la dirección mediante la recarga de la página seguido de una redirección a un dominio diferente. Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary code. Versions less than 12.00.1467 are affected. • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html • CWE-20: Improper Input Validation •

CVSS: 5.5EPSS: 0%CPEs: 124EXPL: 0

CVE-2012-1931 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-1931

28 Mar 2012 — Opera before 11.62 on UNIX, when used in conjunction with an unspecified printing application, allows local users to overwrite arbitrary files via a symlink attack on a temporary file during printing. Opera antes de v11.62 en UNIX, cuando se utiliza junto con una aplicación de impresión no se especificada, permite a usuarios locales sobreescribir ficheros arbitrarios mediante un ataque de enlace simbólico en un archivo temporal durante la impresión. Multiple vulnerabilities have been found in Opera, the wor... • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.5EPSS: 1%CPEs: 126EXPL: 0

CVE-2012-1927 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-1927

28 Mar 2012 — Opera before 11.62 allows remote attackers to spoof the address field by triggering the launch of a dialog window associated with a different domain. Opera antes de v11.62 permite a atacantes remotos falsificar el campo de la dirección lanzando una ventana de diálogo asociado a un dominio diferente. Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary code. Versions less than 12.00.1467 are affected. • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html • CWE-20: Improper Input Validation •

CVSS: 6.8EPSS: 1%CPEs: 126EXPL: 0

CVE-2012-1924 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-1924

28 Mar 2012 — Opera before 11.62 allows user-assisted remote attackers to trick users into downloading and executing arbitrary files via a small window for the download dialog. El navegador Opera antes de v11.62 permite engañar a los usuarios, descargar y ejecutar archivos de su elección a atacantes remotos con la ayuda de usuarios locales, a través de una ventana demasiado pequeña para el diálogo de descarga. Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary code.... • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •

CVSS: 5.5EPSS: 0%CPEs: 124EXPL: 0

CVE-2012-1930 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-1930

28 Mar 2012 — Opera before 11.62 on UNIX uses world-readable permissions for temporary files during printing, which allows local users to obtain sensitive information by reading these files. Opera antes de v11.62 en UNIX asigna permisos de lectura para todo el mundo a los archivos temporales durante la impresión, lo que permite a usuarios locales obtener información sensible mediante la lectura de estos archivos. Multiple vulnerabilities have been found in Opera, the worst of which allow for the execution of arbitrary co... • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 6.8EPSS: 1%CPEs: 126EXPL: 0

CVE-2012-1925 – Gentoo Linux Security Advisory 201206-03

https://notcve.org/view.php?id=CVE-2012-1925

28 Mar 2012 — Opera before 11.62 does not ensure that a dialog window is placed on top of content windows, which makes it easier for user-assisted remote attackers to trick users into downloading and executing arbitrary files via a download dialog located under other windows. El navegador Opera antes de v11.62 no garantiza que una ventana de diálogo se coloque en la parte superior de la ventana de contenido, lo que hace más fácil para los atacantes remotos con la ayuda del usuario local a la hora de engañar a los usuario... • http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00012.html •

1...3 4 5 6 7