CVE-2006-3331
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Opera before 9.0 does not reset the SSL security bar after displaying a download dialog from an SSL-enabled website, which allows remote attackers to spoof a trusted SSL certificate from an untrusted website and facilitates phishing attacks.
Opera antes de la v9.0, no restaura la barra de seguridad SSL después de mostrar un diálogo de descarga de un sitio Web con SSL, lo que permite a atacantes remotos suplantar certificados SSL de confianza de un sitio web que no es de confianza y facilita los ataques de phishing.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-06-30 CVE Reserved
- 2006-06-30 CVE Published
- 2024-05-20 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/20897 | Broken Link | |
| http://secunia.com/secunia_research/2006-49/advisory | Broken Link | |
| http://securityreason.com/securityalert/1177 | Broken Link | |
| http://securitytracker.com/id?1016406 | Broken Link | |
| http://www.securityfocus.com/archive/1/438634/100/0/threaded | Broken Link | |
| http://www.securityfocus.com/bid/18692 | Broken Link | |
| http://www.vupen.com/english/advisories/2006/2571 | Broken Link | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/27449 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/19480 | 2022-02-28 |
| URL | Date | SRC |
|---|---|---|
| http://www.novell.com/linux/security/advisories/2006_38_opera.html | 2022-02-28 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Opera Search vendor "Opera" | Opera Browser Search vendor "Opera" for product "Opera Browser" | < 9.0 Search vendor "Opera" for product "Opera Browser" and version " < 9.0" | - |
Affected
| ||||||