CVE-2007-0127

2007-01-08T21:28:00
ID CVE-2007-0127
Type cve
Reporter NVD
Modified 2011-03-07T00:00:00

Description

The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScript code that uses an invalid object in this request that causes a controlled pointer to be referenced during the virtual function call.