Lucene search

[email protected]CVE-2003-0870

HistoryNov 17, 2003 - 5:00 a.m.

CVE-2003-0870

2003-11-1705:00:00

CWE-787

[email protected]

web.nvd.nist.gov

opera

7.11

7.20

heap-based buffer overflow

code execution

security vulnerability

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.048 Low

EPSS

Percentile

92.6%

JSON

Heap-based buffer overflow in Opera 7.11 and 7.20 allows remote attackers to execute arbitrary code via an HREF with a large number of escaped characters in the server name.

CPENameOperatorVersion
opera:opera_browseropera opera browsereq7.20
opera:opera_browseropera opera browsereq7.11

CPE	Name	Operator	Version
opera:opera_browser	opera opera browser	eq	7.20
opera:opera_browser	opera opera browser	eq	7.11

References

archives.neohapsis.com/archives/vulnwatch/2003-q4/0016.html

www.atstake.com/research/advisories/2003/a102003-1.txt

www.securityfocus.com/bid/8853

exchange.xforce.ibmcloud.com/vulnerabilities/13458

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.048 Low

EPSS

Percentile

92.6%

JSON

Related for CVE-2003-0870

gentoo1 openvas2 securityvulns1 nessus1