Lucene search
HistoryDec 07, 2011 - 7:55 p.m.
CVE-2011-4682
cve-2011-4682
javascript engine
opera
same origin policy
remote attackers
security vulnerability
6.3 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
58.1%
The JavaScript engine in Opera before 11.60 does not properly implement the in operator, which allows remote attackers to bypass the Same Origin Policy via vectors related to variables on different web sites.
Related
prion
prion
Design/Logic Flaw
2011-12-07 19:55:00
openvas
openvas
FreeBSD Ports: opera, linux-opera
2012-02-13 00:00:00
FreeBSD Ports: opera, linux-opera
2012-02-13 00:00:00
Opera Multiple Vulnerabilities - December11 (Linux)
2012-04-09 00:00:00
nessus
nessus
FreeBSD : opera -- multiple vulnerabilities (a4a809d8-25c8-11e1-b531-00215c6a37bb) (BEAST)
2011-12-14 00:00:00
openSUSE Security Update : opera (openSUSE-SU-2011:1314-1)
2014-06-13 00:00:00
openSUSE Security Update : opera (openSUSE-2011-76)
2014-06-13 00:00:00
freebsd
freebsd
opera -- multiple vulnerabilities
2011-12-06 00:00:00
gentoo
gentoo
Opera: Multiple vulnerabilities
2012-06-15 00:00:00
6.3 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
58.1%
Related for CVE-2011-4682