Lucene search
HistoryJul 08, 2010 - 12:54 p.m.
CVE-2010-2665
cve-2010-2665
xss
vulnerability
opera
windows
mac os x
unix
web script
html
data uri
security
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.6%
Cross-site scripting (XSS) vulnerability in Opera before 10.54 on Windows and Mac OS X, and before 10.11 on UNIX platforms, allows remote attackers to inject arbitrary web script or HTML via a data: URI, related to incorrect detection of the “opening site.”
Affected configurations
Node
operaopera_browserRange≤10.53
ORoperaopera_browserMatch5.0
ORoperaopera_browserMatch5.0beta2
ORoperaopera_browserMatch5.0beta3
ORoperaopera_browserMatch5.0beta4
ORoperaopera_browserMatch5.0beta5
ORoperaopera_browserMatch5.0beta6
ORoperaopera_browserMatch5.0beta7
ORoperaopera_browserMatch5.0beta8
ORoperaopera_browserMatch5.02
ORoperaopera_browserMatch5.10
ORoperaopera_browserMatch5.11
ORoperaopera_browserMatch5.12
ORoperaopera_browserMatch6.0
ORoperaopera_browserMatch6.0beta1
ORoperaopera_browserMatch6.0beta2
ORoperaopera_browserMatch6.0tp1
ORoperaopera_browserMatch6.0tp2
ORoperaopera_browserMatch6.0tp3
ORoperaopera_browserMatch6.01
ORoperaopera_browserMatch6.02
ORoperaopera_browserMatch6.03
ORoperaopera_browserMatch6.04
ORoperaopera_browserMatch6.05
ORoperaopera_browserMatch6.06
ORoperaopera_browserMatch7.0
ORoperaopera_browserMatch7.0beta1
ORoperaopera_browserMatch7.0beta1_v2
ORoperaopera_browserMatch7.0beta2
ORoperaopera_browserMatch7.01
ORoperaopera_browserMatch7.02
ORoperaopera_browserMatch7.03
ORoperaopera_browserMatch7.10
ORoperaopera_browserMatch7.10beta1
ORoperaopera_browserMatch7.11
ORoperaopera_browserMatch7.11beta2
ORoperaopera_browserMatch7.20
ORoperaopera_browserMatch7.20beta7
ORoperaopera_browserMatch7.21
ORoperaopera_browserMatch7.22
ORoperaopera_browserMatch7.23
ORoperaopera_browserMatch7.50
ORoperaopera_browserMatch7.50beta1
ORoperaopera_browserMatch7.51
ORoperaopera_browserMatch7.52
ORoperaopera_browserMatch7.53
ORoperaopera_browserMatch7.54
ORoperaopera_browserMatch7.54update1
ORoperaopera_browserMatch7.54update2
ORoperaopera_browserMatch7.60
ORoperaopera_browserMatch8.0
ORoperaopera_browserMatch8.0beta1
ORoperaopera_browserMatch8.0beta2
ORoperaopera_browserMatch8.0beta3
ORoperaopera_browserMatch8.01
ORoperaopera_browserMatch8.02
ORoperaopera_browserMatch8.50
ORoperaopera_browserMatch8.51
ORoperaopera_browserMatch8.52
ORoperaopera_browserMatch8.53
ORoperaopera_browserMatch8.54
ORoperaopera_browserMatch9.0
ORoperaopera_browserMatch9.0beta1
ORoperaopera_browserMatch9.0beta2
ORoperaopera_browserMatch9.01
ORoperaopera_browserMatch9.02
ORoperaopera_browserMatch9.10
ORoperaopera_browserMatch9.12
ORoperaopera_browserMatch9.20
ORoperaopera_browserMatch9.20beta1
ORoperaopera_browserMatch9.21
ORoperaopera_browserMatch9.22
ORoperaopera_browserMatch9.23
ORoperaopera_browserMatch9.24
ORoperaopera_browserMatch9.25
ORoperaopera_browserMatch9.26
ORoperaopera_browserMatch9.27
ORoperaopera_browserMatch9.50
ORoperaopera_browserMatch9.50beta1
ORoperaopera_browserMatch9.50beta2
ORoperaopera_browserMatch9.51
ORoperaopera_browserMatch9.52
ORoperaopera_browserMatch9.60
ORoperaopera_browserMatch9.60beta1
ORoperaopera_browserMatch9.61
ORoperaopera_browserMatch9.62
ORoperaopera_browserMatch9.63
ORoperaopera_browserMatch9.64
ORoperaopera_browserMatch10.00
ORoperaopera_browserMatch10.00beta1
ORoperaopera_browserMatch10.00beta2
ORoperaopera_browserMatch10.00beta3
ORoperaopera_browserMatch10.01
ORoperaopera_browserMatch10.10
ORoperaopera_browserMatch10.10beta1
ORoperaopera_browserMatch10.50
ORoperaopera_browserMatch10.50beta1
ORoperaopera_browserMatch10.51
ORoperaopera_browserMatch10.52
microsoftwindows
Node
operaopera_browserRange≤10.53
ORoperaopera_browserMatch6.0
ORoperaopera_browserMatch6.0beta1
ORoperaopera_browserMatch6.0beta2
ORoperaopera_browserMatch6.0beta3
ORoperaopera_browserMatch6.02
ORoperaopera_browserMatch6.03
ORoperaopera_browserMatch7.50
ORoperaopera_browserMatch7.50beta1
ORoperaopera_browserMatch7.51
ORoperaopera_browserMatch7.52
ORoperaopera_browserMatch7.53
ORoperaopera_browserMatch7.54
ORoperaopera_browserMatch7.54update1
ORoperaopera_browserMatch7.54update2
ORoperaopera_browserMatch8.0beta1
ORoperaopera_browserMatch8.01
ORoperaopera_browserMatch8.02
ORoperaopera_browserMatch8.50
ORoperaopera_browserMatch8.51
ORoperaopera_browserMatch8.52
ORoperaopera_browserMatch8.54
ORoperaopera_browserMatch9.0
ORoperaopera_browserMatch9.0beta1
ORoperaopera_browserMatch9.0beta2
ORoperaopera_browserMatch9.01
ORoperaopera_browserMatch9.02
ORoperaopera_browserMatch9.10
ORoperaopera_browserMatch9.20
ORoperaopera_browserMatch9.20beta1
ORoperaopera_browserMatch9.21
ORoperaopera_browserMatch9.22
ORoperaopera_browserMatch9.23
ORoperaopera_browserMatch9.24
ORoperaopera_browserMatch9.25
ORoperaopera_browserMatch9.26
ORoperaopera_browserMatch9.27
ORoperaopera_browserMatch9.50
ORoperaopera_browserMatch9.50beta1
ORoperaopera_browserMatch9.50beta2
ORoperaopera_browserMatch9.51
ORoperaopera_browserMatch9.52
ORoperaopera_browserMatch9.60
ORoperaopera_browserMatch9.60beta1
ORoperaopera_browserMatch9.61
ORoperaopera_browserMatch9.62
ORoperaopera_browserMatch9.63
ORoperaopera_browserMatch9.64
ORoperaopera_browserMatch10.00
ORoperaopera_browserMatch10.00beta1
ORoperaopera_browserMatch10.00beta2
ORoperaopera_browserMatch10.00beta3
ORoperaopera_browserMatch10.01
ORoperaopera_browserMatch10.10
ORoperaopera_browserMatch10.10beta1
ORoperaopera_browserMatch10.50beta1
ORoperaopera_browserMatch10.52
ORoperaopera_browserMatch10.52beta1
ORoperaopera_browserMatch10.52beta2
applemac_os_x
Node
operaopera_browserRange≤10.10
ORoperaopera_browserMatch5.0
ORoperaopera_browserMatch5.0beta2
ORoperaopera_browserMatch5.0beta3
ORoperaopera_browserMatch5.0beta4
ORoperaopera_browserMatch5.0beta5
ORoperaopera_browserMatch5.0beta6
ORoperaopera_browserMatch5.0beta7
ORoperaopera_browserMatch5.0beta8
ORoperaopera_browserMatch6.0
ORoperaopera_browserMatch6.0beta1
ORoperaopera_browserMatch6.0beta2
ORoperaopera_browserMatch6.0tp1
ORoperaopera_browserMatch6.0tp2
ORoperaopera_browserMatch6.0tp3
ORoperaopera_browserMatch6.1
ORoperaopera_browserMatch6.01
ORoperaopera_browserMatch6.1beta1
ORoperaopera_browserMatch6.02
ORoperaopera_browserMatch6.03
ORoperaopera_browserMatch6.11
ORoperaopera_browserMatch6.12
ORoperaopera_browserMatch7.10beta1
ORoperaopera_browserMatch7.11
ORoperaopera_browserMatch7.11beta2
ORoperaopera_browserMatch7.20
ORoperaopera_browserMatch7.20beta7
ORoperaopera_browserMatch7.21
ORoperaopera_browserMatch7.22
ORoperaopera_browserMatch7.23
ORoperaopera_browserMatch7.50
ORoperaopera_browserMatch7.50beta1
ORoperaopera_browserMatch7.51
ORoperaopera_browserMatch7.52
ORoperaopera_browserMatch7.53
ORoperaopera_browserMatch7.54
ORoperaopera_browserMatch7.54update1
ORoperaopera_browserMatch7.54update2
ORoperaopera_browserMatch8.0
ORoperaopera_browserMatch8.0beta1
ORoperaopera_browserMatch8.0beta2
ORoperaopera_browserMatch8.0beta3
ORoperaopera_browserMatch8.01
ORoperaopera_browserMatch8.02
ORoperaopera_browserMatch8.50
ORoperaopera_browserMatch8.51
ORoperaopera_browserMatch8.52
ORoperaopera_browserMatch8.54
ORoperaopera_browserMatch9.0
ORoperaopera_browserMatch9.0beta1
ORoperaopera_browserMatch9.0beta2
ORoperaopera_browserMatch9.01
ORoperaopera_browserMatch9.02
ORoperaopera_browserMatch9.10
ORoperaopera_browserMatch9.20
ORoperaopera_browserMatch9.20beta1
ORoperaopera_browserMatch9.21
ORoperaopera_browserMatch9.22
ORoperaopera_browserMatch9.23
ORoperaopera_browserMatch9.24
ORoperaopera_browserMatch9.25
ORoperaopera_browserMatch9.26
ORoperaopera_browserMatch9.27
ORoperaopera_browserMatch9.50
ORoperaopera_browserMatch9.50beta1
ORoperaopera_browserMatch9.50beta2
ORoperaopera_browserMatch9.51
ORoperaopera_browserMatch9.52
ORoperaopera_browserMatch9.60
ORoperaopera_browserMatch9.60beta1
ORoperaopera_browserMatch9.61
ORoperaopera_browserMatch9.62
ORoperaopera_browserMatch9.63
ORoperaopera_browserMatch9.64
ORoperaopera_browserMatch10.00
ORoperaopera_browserMatch10.00beta1
ORoperaopera_browserMatch10.00beta2
ORoperaopera_browserMatch10.00beta3
ORoperaopera_browserMatch10.10beta1
unixunix
References
secunia.com/advisories/40250
www.opera.com/docs/changelogs/mac/1054/
www.opera.com/docs/changelogs/unix/1011/
www.opera.com/docs/changelogs/windows/1054/
www.opera.com/support/kb/view/955/
www.securityfocus.com/bid/40973
www.vupen.com/english/advisories/2010/1529
exchange.xforce.ibmcloud.com/vulnerabilities/60646
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11362
Related
prion
prion
Cross site scripting
2010-07-08 12:54:00
nvd
nvd
CVE-2010-2665
2010-07-08 12:54:47
cvelist
cvelist
CVE-2010-2665
2010-07-07 18:00:00
openvas
openvas
Opera Browser Multiple Vulnerabilities july-10 (Win02)
2010-07-16 00:00:00
Opera Browser < 10.54 Multiple Vulnerabilities (Jul 2010) - Windows
2010-07-16 00:00:00
Gentoo Security Advisory GLSA 201206-03 (Opera)
2012-08-10 00:00:00
nessus
nessus
Opera < 10.54 Multiple Vulnerabilities
2010-06-22 00:00:00
GLSA-201206-03 : Opera: Multiple vulnerabilities
2012-06-21 00:00:00
gentoo
gentoo
Opera: Multiple vulnerabilities
2012-06-15 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
70.6%
Related for CVE-2010-2665