Lucene search
HistoryJun 11, 2007 - 6:30 p.m.
CVE-2007-3142
cve-2007-3142
visual truncation
opera 9.21
remote attackers
phishing attacks
spoofing
address bar
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.9%
Visual truncation vulnerability in Opera 9.21 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after 34 characters, as demonstrated by a phishing attack using HTTP Basic Authentication.
Affected configurations
Node
operaopera_browserMatch9.21
| CPE | Name | Operator | Version |
|---|---|---|---|
| opera:opera_browser | opera opera browser | eq | 9.21 |
Related
prion
prion
Design/Logic Flaw
2007-06-11 18:30:00
nvd
nvd
CVE-2007-3142
2007-06-11 18:30:00
ubuntucve
ubuntucve
CVE-2007-3142
2007-06-11 00:00:00
cvelist
cvelist
CVE-2007-3142
2007-06-11 18:00:00
nessus
nessus
Opera < 9.22 Multiple Vulnerabilities
2007-07-23 00:00:00
GLSA-200708-17 : Opera: Multiple vulnerabilities
2007-09-14 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200708-17 (opera)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200708-17 (opera)
2008-09-24 00:00:00
gentoo
gentoo
Opera: Multiple vulnerabilities
2007-08-22 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.9%
Related for CVE-2007-3142