Lucene search

[email protected]CVE-2005-1475

HistoryJun 16, 2005 - 4:00 a.m.

CVE-2005-1475

2005-06-1604:00:00

CWE-601

[email protected]

web.nvd.nist.gov

cve-2005-1475

opera

xmlhttprequest

access restrictions

remote attackers

unauthorized actions

6.4 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.7%

JSON

The XMLHttpRequest object in Opera 8.0 Final Build 1095 allows remote attackers to bypass access restrictions and perform unauthorized actions on other domains via a redirect.

Affected configurations

NVD

Node

operaopera_browserRange<8.01

CPENameOperatorVersion
opera:opera_browseropera opera browserlt8.01

CPE	Name	Operator	Version
opera:opera_browser	opera opera browser	lt	8.01

References

secunia.com/advisories/15008

secunia.com/secunia_research/2005-4/advisory/

www.securityfocus.com/bid/13970

6.4 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.7%

JSON

Related for CVE-2005-1475

openvas2 nessus3 nvd1 cert1 freebsd1 cvelist1 suse1