Lucene search

K

Opera Extended Validation Information Disclosure Vulnerabilities - Mac OS X

🗓️ 09 Sep 2011 00:00:00Reported by Copyright (C) 2011 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 14 Views

Opera Extended Validation Information Disclosure Vulnerabilities on Mac OS

Show more
Related
Refs
Code
# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.802333");
  script_version("2024-02-15T05:05:39+0000");
  script_tag(name:"last_modification", value:"2024-02-15 05:05:39 +0000 (Thu, 15 Feb 2024)");
  script_tag(name:"creation_date", value:"2011-09-09 17:36:48 +0200 (Fri, 09 Sep 2011)");
  script_cve_id("CVE-2011-3388", "CVE-2011-3389");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:N/A:N");
  script_name("Opera Extended Validation Information Disclosure Vulnerabilities - Mac OS X");
  script_xref(name:"URL", value:"http://secunia.com/advisories/45791");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/49388");
  script_xref(name:"URL", value:"http://www.securitytracker.com/id?1025997");
  script_xref(name:"URL", value:"http://www.opera.com/support/kb/view/1000/");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2011 Greenbone AG");
  script_family("General");
  script_dependencies("gb_opera_detect_macosx.nasl");
  script_mandatory_keys("Opera/MacOSX/Version");
  script_tag(name:"impact", value:"Successful exploitation allows remote attackers to steal sensitive security
  information.");
  script_tag(name:"affected", value:"Opera version before 11.51.");
  script_tag(name:"insight", value:"Multiple flaws are due to an error when loading content from trusted
  sources in an unspecified sequence that causes the address field and page
  information dialog to contain security information based on the trusted site
  and loading an insecure site to appear secure via unspecified actions related
  to Extended Validation.");
  script_tag(name:"solution", value:"Upgrade to Opera version 11.51 or later");
  script_tag(name:"summary", value:"Opera is prone to an information disclosure vulnerability.");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("version_func.inc");

operaVer = get_kb_item("Opera/MacOSX/Version");
if(!operaVer){
  exit(0);
}

if(version_is_less(version:operaVer, test_version:"11.51")){
  report = report_fixed_ver(installed_version:operaVer, fixed_version:"11.51");
  security_message(port: 0, data: report);
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
09 Sep 2011 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS24.3
EPSS0.014
14
.json
Report