Lucene search
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.SUSE_SA_2007_009.NASLHistoryFeb 18, 2007 - 12:00 a.m.
SUSE-SA:2007:009: opera
2007-02-1800:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
7
The remote host is missing the patch for the advisory SUSE-SA:2007:009 (opera).
This update brings the Opera Web browser to version 9.10, including fixes for the following 2 security problems:
-
CVE-2007-0126: Opera processes a JPEG DHT marker incorrectly, which can potentially lead to remote code execution.
-
CVE-2007-0127: Opera is affected by a typecasting bug in its Javascripts SVG implementation which could potentially be used to execute code.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2007:009
#
if ( ! defined_func("bn_random") ) exit(0);
include('deprecated_nasl_level.inc');
include('compat.inc');
if(description)
{
script_id(24463);
script_version("1.10");
name["english"] = "SUSE-SA:2007:009: opera";
script_name(english:name["english"]);
script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a vendor-supplied security patch" );
script_set_attribute(attribute:"description", value:
"The remote host is missing the patch for the advisory SUSE-SA:2007:009 (opera).
This update brings the Opera Web browser to version 9.10, including
fixes for the following 2 security problems:
- CVE-2007-0126: Opera processes a JPEG DHT marker incorrectly, which
can potentially lead to remote code execution.
- CVE-2007-0127: Opera is affected by a typecasting bug in its
Javascripts SVG implementation which could potentially be used to
execute code." );
script_set_attribute(attribute:"solution", value:
"http://www.novell.com/linux/security/advisories/2007_09_opera.html" );
script_set_attribute(attribute:"risk_factor", value:"High" );
script_set_attribute(attribute:"plugin_publication_date", value: "2007/02/18");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_end_attributes();
summary["english"] = "Check for the version of the opera package";
script_summary(english:summary["english"]);
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
family["english"] = "SuSE Local Security Checks";
script_family(english:family["english"]);
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/SuSE/rpm-list");
exit(0);
}
include("rpm.inc");
if ( rpm_check( reference:"opera-9.10-3.1", release:"SUSE10.0") )
{
security_hole(0);
exit(0);
}
if ( rpm_check( reference:"opera-9.10-3.1", release:"SUSE9.3") )
{
security_hole(0);
exit(0);
}
Related
freebsd
freebsd
opera -- multiple vulnerabilities
2007-01-05 00:00:00
openvas
openvas
FreeBSD Ports: opera, opera-devel, linux-opera
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200701-08 (opera)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200701-08 (opera)
2008-09-24 00:00:00
nessus
nessus
Opera < 9.10 Multiple Vulnerabilities
2007-01-06 00:00:00
FreeBSD : opera -- multiple vulnerabilities (78ad2525-9d0c-11db-a5f6-000c6ec775d9)
2007-01-08 00:00:00
GLSA-200701-08 : Opera: Two remote code execution vulnerabilities
2007-01-17 00:00:00
suse
suse
remote code execution in opera
2007-01-15 15:02:45
securityvulns
securityvulns
Opera browser multiple security vulnerabilities
2007-01-09 00:00:00
gentoo
gentoo
Opera: Two remote code execution vulnerabilities
2007-01-12 00:00:00
cvelist
cvelist
CVE-2007-0126
2007-01-09 02:00:00
CVE-2007-0127
2007-01-09 02:00:00
prion
prion
Heap overflow
2007-01-09 02:28:00
Design/Logic Flaw
2007-01-09 02:28:00
cve
cve
CVE-2007-0126
2007-01-09 02:28:00
CVE-2007-0127
2007-01-09 02:28:00
Related for SUSE_SA_2007_009.NASL