Opera Web Browser Multiple Security Vulnerabilities Aug-08 (Linux
Reporter | Title | Published | Views | Family All 17 |
---|---|---|---|---|
![]() | Design/Logic Flaw | 27 Sep 200810:30 | – | prion |
![]() | CVE-2008-4195 | 27 Sep 200800:00 | – | cvelist |
![]() | Opera Web Browser Multiple Security Vulnerabilities Aug-08 (Windows) | 22 Aug 200800:00 | – | openvas |
![]() | Opera Web Browser Multiple Security Vulnerabilities (Aug 2008) - Windows | 22 Aug 200800:00 | – | openvas |
![]() | Opera Web Browser Multiple Security Vulnerabilities (Aug 2008) - Linux | 22 Aug 200800:00 | – | openvas |
![]() | FreeBSD Ports: opera, linux-opera | 4 Sep 200800:00 | – | openvas |
![]() | FreeBSD Ports: opera, linux-opera | 4 Sep 200800:00 | – | openvas |
![]() | Gentoo Security Advisory GLSA 200811-01 (opera) | 19 Nov 200800:00 | – | openvas |
![]() | Gentoo Security Advisory GLSA 200811-01 (opera) | 19 Nov 200800:00 | – | openvas |
![]() | CVE-2008-4195 | 27 Sep 200800:00 | – | ubuntucve |
##############################################################################
# OpenVAS Vulnerability Test
# $Id: secpod_opera_mult_vuln_aug08_lin_900039.nasl 7524 2017-10-20 08:31:54Z cfischer $
# Description: Opera Web Browser Multiple Security Vulnerabilities Aug-08 (Linux)
#
# Authors:
# Chandan S <[email protected]>
#
# Copyright:
# Copyright (C) 2008 SecPod, http://www.secpod.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
##############################################################################
tag_impact = "Remote exploitation will allow browser to crash, can potentially
execute arbitrary code, cross site scripting attacks, and can even change
the address field to the address of the malicious web page to mislead a user.
Impact Level : Application";
tag_solution = "Upgrade to Opera version 9.52,
http://www.opera.com/download/";
tag_affected = "Opera Version 9.51 and prior versions on Linux (All)";
tag_insight = "Multiple vulnerabilities exists in Opera Browser,
- Sites can change framed content on other sites
- Startup crash can allow execution of arbitrary code
- Custom shortcuts can pass the wrong parameters to applications
- Insecure pages can show incorrect security information
- Feed links can link to local files
- Feed subscription can cause the wrong page address to be displayed";
tag_summary = "The remote host is running Opera Web Browser, which is prone
to multiple vulnerabilities.";
if(description)
{
script_id(900039);
script_version("$Revision: 7524 $");
script_tag(name:"last_modification", value:"$Date: 2017-10-20 10:31:54 +0200 (Fri, 20 Oct 2017) $");
script_tag(name:"creation_date", value:"2008-08-22 10:29:01 +0200 (Fri, 22 Aug 2008)");
script_cve_id("CVE-2008-4195");
script_bugtraq_id(30768);
script_copyright("Copyright (C) 2008 SecPod");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_category(ACT_GATHER_INFO);
script_tag(name:"qod_type", value:"package");
script_family("General");
script_name("Opera Web Browser Multiple Security Vulnerabilities Aug-08 (Linux)");
script_dependencies("gather-package-list.nasl", "secpod_opera_detection_linux_900037.nasl");
script_mandatory_keys("Opera/Linux/Version");
script_xref(name : "URL" , value : "http://www.opera.com/support/search/view/893/");
script_xref(name : "URL" , value : "http://www.opera.com/support/search/view/894/");
script_xref(name : "URL" , value : "http://www.opera.com/support/search/view/895/");
script_xref(name : "URL" , value : "http://www.opera.com/support/search/view/896/");
script_xref(name : "URL" , value : "http://www.opera.com/support/search/view/897/");
script_xref(name : "URL" , value : "http://www.opera.com/docs/changelogs/linux/952/");
script_tag(name : "summary" , value : tag_summary);
script_tag(name : "insight" , value : tag_insight);
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "impact" , value : tag_impact);
exit(0);
}
if( egrep( pattern:"^([0-8]\..*|9\.([0-4]?[0-9]|5[01]))$", string:get_kb_item( "Opera/Linux/Version" ) ) ) {
security_message(port:0);
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo