FreeBSD2EDA0C54-34AB-11E0-8103-00215C6A37BBopera -- multiple vulnerabilities
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.049 Low
EPSS
Percentile
92.7%
Opera reports:
Opera 11.01 is a recommended upgrade offering security and
stability enhancements.
The following security vulnerabilities have been fixed:
Removed support for “javascript:” URLs in
CSS -o-link values, to make it easier for sites to filter
untrusted CSS.
Fixed an issue where large form inputs could allow
execution of arbitrary code, as reported by Jordi Chancel;
see our advisory.
Fixed an issue which made it possible to carry out
clickjacking attacks against internal opera: URLs;
see our advisory.
Fixed issues which allowed web pages to gain limited
access to files on the user’s computer; see our
advisory.
Fixed an issue where email passwords were not immediately
deleted when deleting private data; see our
advisory.
Related
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.049 Low
EPSS
Percentile
92.7%