Lucene search

[email protected]CVE-2005-1139

HistoryApr 14, 2005 - 4:00 a.m.

CVE-2005-1139

2005-04-1404:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

opera

ssl

certificate

spoofing

phishing

security

vulnerability

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.5%

JSON

Opera 8 Beta 3, when using first-generation vetted digital certificates, displays the Organizational information of an SSL certificate, which is easily spoofed and can facilitate phishing attacks.

CPENameOperatorVersion
opera:opera_browseropera opera browsereq8.0

CPE	Name	Operator	Version
opera:opera_browser	opera opera browser	eq	8.0

References

www.geotrust.com/resources/advisory/sslorg/index.htm

www.geotrust.com/resources/advisory/sslorg/sslorg-advisory.htm

www.novell.com/linux/security/advisories/2005_31_opera.html

www.securityfocus.com/bid/13176

exchange.xforce.ibmcloud.com/vulnerabilities/40503

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.5%

JSON

Related for CVE-2005-1139

suse1 nessus1