CVSS: 7.5EPSS: 4%CPEs: 2EXPL: 3CVE-2003-0870 – Opera 7.11/7.20 HREF - Malformed Server Name Heap Corruption
https://notcve.org/view.php?id=CVE-2003-0870
Heap-based buffer overflow in Opera 7.11 and 7.20 allows remote attackers to execute arbitrary code via an HREF with a large number of escaped characters in the server name. Desbordamiento de búfer en Opera 7.11 y 7.20 permite a atacantes remotos ejecutar código arbitrario mediante un HREF con un número de largo de caractéres escapados en el nombre del servidor. • https://www.exploit-db.com/exploits/23263 http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0016.html http://www.atstake.com/research/advisories/2003/a102003-1.txt http://www.securityfocus.com/bid/8853 https://exchange.xforce.ibmcloud.com/vulnerabilities/13458 • CWE-787: Out-of-bounds Write •
CVSS: 6.4EPSS: 55%CPEs: 9EXPL: 1CVE-2002-2311
https://notcve.org/view.php?id=CVE-2002-2311
Microsoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage. NOTE: it was reported that the vendor has disputed the severity of this issue. • http://online.securityfocus.com/archive/1/283866 http://online.securityfocus.com/archive/1/284068 http://www.iss.net/security_center/static/9653.php http://www.securityfocus.com/bid/5290 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 2CVE-2002-2312 – Opera 6.0.1 / Microsoft Internet Explorer 5/6 - JavaScript Modifier Keypress Event Subversion
https://notcve.org/view.php?id=CVE-2002-2312
Opera 6.0.1 allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage. • https://www.exploit-db.com/exploits/21636 http://online.securityfocus.com/archive/1/283866 http://online.securityfocus.com/archive/1/284096 http://www.securityfocus.com/bid/5290 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2002-2332
https://notcve.org/view.php?id=CVE-2002-2332
Buffer overflow in Opera 6.01 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height attributes. • http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-09/0167.html http://www.iss.net/security_center/static/10126.php http://www.securityfocus.com/bid/5717 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 1%CPEs: 2EXPL: 0CVE-2002-2414
https://notcve.org/view.php?id=CVE-2002-2414
Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash). • http://marc.info/?l=full-disclosure&m=103783186608438&w=2 http://www.iss.net/security_center/static/10673.php http://www.securityfocus.com/bid/6218 •