CVE-2008-2716
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.
Vulnerabilidad no especificada en Opera versiones anteriores a 9.5 permite a atacantes remotos suplantar los contenidos de marcos de confianza en la misma página padre mediante la modificación de la localización, lo cual puede facilitar los ataques de phishing.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-06-16 CVE Reserved
- 2008-06-16 CVE Published
- 2024-08-07 CVE Updated
- 2024-11-18 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1021: Improper Restriction of Rendered UI Layers or Frames
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/30636 | Broken Link | |
| http://secunia.com/advisories/30682 | Broken Link | |
| http://www.securitytracker.com/id?1020292 | Broken Link | |
| http://www.vupen.com/english/advisories/2008/1812 | Broken Link | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/43033 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.securityfocus.com/bid/29684 | 2022-03-01 |
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.html | 2022-03-01 | |
| http://www.opera.com/docs/changelogs/linux/950/#security | 2022-03-01 | |
| http://www.opera.com/docs/changelogs/windows/950/#security | 2022-03-01 | |
| http://www.opera.com/support/search/view/885 | 2022-03-01 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Opera Search vendor "Opera" | Opera Browser Search vendor "Opera" for product "Opera Browser" | < 9.5 Search vendor "Opera" for product "Opera Browser" and version " < 9.5" | - |
Affected
| ||||||