Lucene search
Copyright (C) 2010 Greenbone AGOPENVAS:1361412562310801310HistoryApr 13, 2010 - 12:00 a.m.
Opera 'XSLT' Information Disclosure Vulnerability - Windows
2010-04-1300:00:00
Copyright (C) 2010 Greenbone AG
plugins.openvas.org
6
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
57.8%
Opera Web Browser is prone to an information disclosure vulnerability.
# SPDX-FileCopyrightText: 2010 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.801310");
script_version("2024-02-27T14:36:53+0000");
script_tag(name:"last_modification", value:"2024-02-27 14:36:53 +0000 (Tue, 27 Feb 2024)");
script_tag(name:"creation_date", value:"2010-04-13 16:55:19 +0200 (Tue, 13 Apr 2010)");
script_cve_id("CVE-2010-1310");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_name("Opera 'XSLT' Information Disclosure Vulnerability - Windows");
script_xref(name:"URL", value:"http://secunia.com/advisories/38820");
script_xref(name:"URL", value:"http://www.opera.com/support/kb/view/949/");
script_xref(name:"URL", value:"http://www.opera.com/docs/changelogs/windows/1051/");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2010 Greenbone AG");
script_family("General");
script_dependencies("gb_opera_detect_portable_win.nasl");
script_mandatory_keys("Opera/Win/Version");
script_tag(name:"impact", value:"Successful exploitation will allow remote attackers to obtain sensitive
information via a crafted document.");
script_tag(name:"affected", value:"Opera version 10.50 and on Windows.");
script_tag(name:"insight", value:"The flaw is due to an error in handling of 'XSLT' constructs which can
cause Opera to retrieve the wrong contents for the resulting document. These
contents will appear randomly from the cached versions of any Web page that
has previously been visited.");
script_tag(name:"solution", value:"Upgrade to the opera version 10.51 or later.");
script_tag(name:"summary", value:"Opera Web Browser is prone to an information disclosure vulnerability.");
script_tag(name:"qod_type", value:"registry");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("version_func.inc");
operaVer = get_kb_item("Opera/Win/Version");
if(!operaVer){
exit(0);
}
if(version_is_less(version:operaVer, test_version:"10.51")){
report = report_fixed_ver(installed_version:operaVer, fixed_version:"10.51");
security_message(port: 0, data: report);
exit(0);
}
exit(99);
Related
openvas
openvas
Opera 'XSLT' Information Disclosure Vulnerability - (Windows)
2010-04-13 00:00:00
cve
cve
CVE-2010-1310
2022-10-03 16:21:01
cvelist
cvelist
CVE-2010-1310
2022-10-03 16:21:01
prion
prion
Design/Logic Flaw
2010-04-08 17:30:00
nvd
nvd
CVE-2010-1310
2010-04-08 17:30:00
nessus
nessus
Opera < 10.51 Multiple Vulnerabilities
2010-03-22 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
57.8%
Related for OPENVAS:1361412562310801310