Lucene search
HistoryOct 21, 2010 - 7:00 p.m.
CVE-2010-4047
cve-2010-4047
opera
xss
cross-site scripting
security context
javascript
error page
remote attack
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.3%
Opera before 10.63 does not properly select the security context of JavaScript code associated with an error page, which allows user-assisted remote attackers to conduct cross-site scripting (XSS) attacks via a crafted web site.
Affected configurations
Node
operaopera_browserRange≤10.62
ORoperaopera_browserMatch5.0
ORoperaopera_browserMatch5.0beta2
ORoperaopera_browserMatch5.0beta3
ORoperaopera_browserMatch5.0beta4
ORoperaopera_browserMatch5.0beta5
ORoperaopera_browserMatch5.0beta6
ORoperaopera_browserMatch5.0beta7
ORoperaopera_browserMatch5.0beta8
ORoperaopera_browserMatch5.02
ORoperaopera_browserMatch5.10
ORoperaopera_browserMatch5.11
ORoperaopera_browserMatch5.12
ORoperaopera_browserMatch6.0
ORoperaopera_browserMatch6.0beta1
ORoperaopera_browserMatch6.0beta2
ORoperaopera_browserMatch6.0tp1
ORoperaopera_browserMatch6.0tp2
ORoperaopera_browserMatch6.0tp3
ORoperaopera_browserMatch6.1
ORoperaopera_browserMatch6.01
ORoperaopera_browserMatch6.1beta1
ORoperaopera_browserMatch6.02
ORoperaopera_browserMatch6.03
ORoperaopera_browserMatch6.04
ORoperaopera_browserMatch6.05
ORoperaopera_browserMatch6.06
ORoperaopera_browserMatch6.11
ORoperaopera_browserMatch6.12
ORoperaopera_browserMatch7.0
ORoperaopera_browserMatch7.0beta1
ORoperaopera_browserMatch7.0beta1_v2
ORoperaopera_browserMatch7.0beta2
ORoperaopera_browserMatch7.01
ORoperaopera_browserMatch7.02
ORoperaopera_browserMatch7.03
ORoperaopera_browserMatch7.10
ORoperaopera_browserMatch7.10beta1
ORoperaopera_browserMatch7.11
ORoperaopera_browserMatch7.11beta2
ORoperaopera_browserMatch7.20
ORoperaopera_browserMatch7.20beta7
ORoperaopera_browserMatch7.21
ORoperaopera_browserMatch7.22
ORoperaopera_browserMatch7.23
ORoperaopera_browserMatch7.50
ORoperaopera_browserMatch7.50beta1
ORoperaopera_browserMatch7.51
ORoperaopera_browserMatch7.52
ORoperaopera_browserMatch7.53
ORoperaopera_browserMatch7.54
ORoperaopera_browserMatch7.54update1
ORoperaopera_browserMatch7.54update2
ORoperaopera_browserMatch7.60
ORoperaopera_browserMatch8.0
ORoperaopera_browserMatch8.0beta1
ORoperaopera_browserMatch8.0beta2
ORoperaopera_browserMatch8.0beta3
ORoperaopera_browserMatch8.01
ORoperaopera_browserMatch8.02
ORoperaopera_browserMatch8.50
ORoperaopera_browserMatch8.51
ORoperaopera_browserMatch8.52
ORoperaopera_browserMatch8.53
ORoperaopera_browserMatch8.54
ORoperaopera_browserMatch9.0
ORoperaopera_browserMatch9.0beta1
ORoperaopera_browserMatch9.0beta2
ORoperaopera_browserMatch9.01
ORoperaopera_browserMatch9.02
ORoperaopera_browserMatch9.10
ORoperaopera_browserMatch9.12
ORoperaopera_browserMatch9.20
ORoperaopera_browserMatch9.20beta1
ORoperaopera_browserMatch9.21
ORoperaopera_browserMatch9.22
ORoperaopera_browserMatch9.23
ORoperaopera_browserMatch9.24
ORoperaopera_browserMatch9.25
ORoperaopera_browserMatch9.26
ORoperaopera_browserMatch9.27
ORoperaopera_browserMatch9.50
ORoperaopera_browserMatch9.50beta1
ORoperaopera_browserMatch9.50beta2
ORoperaopera_browserMatch9.51
ORoperaopera_browserMatch9.52
ORoperaopera_browserMatch9.60
ORoperaopera_browserMatch9.60beta1
ORoperaopera_browserMatch9.61
ORoperaopera_browserMatch9.62
ORoperaopera_browserMatch9.63
ORoperaopera_browserMatch9.64
ORoperaopera_browserMatch10.00
ORoperaopera_browserMatch10.00beta1
ORoperaopera_browserMatch10.00beta2
ORoperaopera_browserMatch10.00beta3
ORoperaopera_browserMatch10.01
ORoperaopera_browserMatch10.10
ORoperaopera_browserMatch10.10beta1
ORoperaopera_browserMatch10.50
ORoperaopera_browserMatch10.50beta1
ORoperaopera_browserMatch10.50beta2
ORoperaopera_browserMatch10.51
ORoperaopera_browserMatch10.52
ORoperaopera_browserMatch10.53
ORoperaopera_browserMatch10.53b
ORoperaopera_browserMatch10.54
ORoperaopera_browserMatch10.60
ORoperaopera_browserMatch10.60beta1
ORoperaopera_browserMatch10.61
References
Related
nvd
nvd
CVE-2010-4047
2010-10-21 19:00:05
prion
prion
Cross site scripting
2010-10-21 19:00:00
cvelist
cvelist
CVE-2010-4047
2010-10-21 18:12:00
nessus
nessus
Opera < 10.63 Multiple Vulnerabilities
2010-10-13 00:00:00
openvas
openvas
Opera Browser Multiple Vulnerabilities October-10 (Linux)
2012-04-05 00:00:00
Opera Browser Multiple Vulnerabilities (Oct 2010) - Mac OS X
2012-04-19 00:00:00
Opera Browser Multiple Vulnerabilities October-10 (Windows)
2010-10-28 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.3%
Related for CVE-2010-4047