Lucene search
HistoryJul 07, 2004 - 4:00 a.m.
CVE-2004-0473
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
7.1
Confidence
Low
EPSS
0.711
Percentile
98.1%
Argument injection vulnerability in Opera before 7.50 does not properly filter “-” characters that begin a hostname in a telnet URI, which allows remote attackers to insert options to the resulting command line and overwrite arbitrary files via (1) the “-f” option on Windows XP or (2) the “-n” option on Linux.
Affected configurations
Node
operaopera_browserRange<7.50
| Vendor | Product | Version | CPE |
|---|---|---|---|
| opera | opera_browser | * | cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:* |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200405-19 (opera)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200405-19 (opera)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2004-0473
2004-05-20 04:00:00
gentoo
gentoo
Opera telnet URI handler file creation/truncation vulnerability
2004-05-25 00:00:00
cve
cve
CVE-2004-0473
2004-07-07 04:00:00
nessus
nessus
Debian DSA-518-1 : kdelibs - unsanitised input
2004-09-29 00:00:00
checkpoint_advisories
checkpoint_advisories
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
7.1
Confidence
Low
EPSS
0.711
Percentile
98.1%
Related for NVD:CVE-2004-0473