4486 matches found
CVE-2004-2570
CVE-2004-2570 affects Opera prior to 7.54. The vulnerability allows remote attackers to modify properties and methods of the browser’s location object and execute JavaScript to read arbitrary files from the client’s local filesystem or to display a spoofed/false URL. This cross-domain scripting-l...
[Full-disclosure] Secunia Research: Opera Command Line URL Shell Command Injection
====================================================================== Secunia Research 22/11/2005 - Opera Command Line URL Shell Command Injection - ====================================================================== Table of Contents Affected...
CVE-2005-3699
Opera Web Browser 8.50 and 8.0 through 8.0.2 allows remote attackers to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site...
CVE-2005-3699
Opera Web Browser 8.50 and 8.0 through 8.0.2 allows remote attackers to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site...
CVE-2005-3699
CVE-2005-3699 affects Opera Web Browser 8.50 and 8.0–8.0.2. The issue allows remote attackers to spoof the URL shown in the status bar by manipulating the title of an image link within a form to a trusted site, directing users to a malicious site. Public details describe that the exploit involves...
opera -- command line URL shell command injection
An Opera Advisory reports: Opera for UNIX uses a wrapper shell script to start up Opera. This shell script reads the input arguments, like the file names or URLs that Opera is to open. It also performs some environment checks, for example whether Java is available and if so, where it is located...
Opera Web Browser 8.08.5 - HTML Form Status Bar Misrepresentation
Opera Web Browser 8.08.5 - HTML Form Status Bar Misrepresentation source: https://www.securityfocus.com/bid/15472/info A vulnerability has been identified in Opera Web browser that allows an attacker to misrepresent the status bar in the browser, allowing vulnerable users to be mislead into...
Opera Web Browser 8.0/8.5 - HTML Form Status Bar Misrepresentation
source: https://www.securityfocus.com/bid/15472/info A vulnerability has been identified in Opera Web browser that allows an attacker to misrepresent the status bar in the browser, allowing vulnerable users to be mislead into following a link to a malicious site. This vulnerability would most...
opera -- multiple vulnerabilities
Opera reports: It is possible to make a form input that looks like an image link. If the form input has a "title" attribute, the status bar will show the "title". A "title" which looks like a URL can mislead the user, since the title can say http://nice.familiar.com/, while the form action can be...
[SA17437] Opera Macromedia Flash Player SWF Arbitrary Code Execution
TITLE: Opera Macromedia Flash Player SWF Arbitrary Code Execution SECUNIA ADVISORY ID: SA17437 VERIFY ADVISORY: http://secunia.com/advisories/17437/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Opera 8.x http://secunia.com/product/4932/ Opera 7.x...
Opera relative path directory traversal file corruption vulnerability
The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a file corruption vulnerability. This issue is exposed when a user is presented with a file dialog, which will cause the creation of a temporary file. It is possible to specify a relative path to...
Opera web browser file download extension spoofing
The remote host is using Opera - an alternative web browser. This version contains a flaw that may allow a malicious user to trick a user into running arbitrary code. The issue is triggered when an malicious web site provides a file for download, but crafts the filename in such a way that the fil...
Opera skin zip file buffer overflow vulnerability
The remote host is using Opera - an alternative web browser. This version is vulnerable to a security weakness. A problem has been identified in the handling of zipped skin files by Opera. Because of this, it may be possible for an attacker to gain unauthorized access to a system using the...
Opera remote location object cross-domain scripting vulnerability
The remote host contains a web browser that is affected by multiple flaws. Description : The remote host is using Opera, an alternative web browser. This version of Opera on the remote host fails to block write access to the SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might...
Opera web browser address bar spoofing weakness (2)
The remote host contains a web browser that is vulnerable to address bar spoofing attacks. Description : The remote host is using Opera, an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. It ...
Opera web browser news url denial of service vulnerability
The remote host is using Opera - an alternative web browser. This version reportedly occurs when processing a SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Opera web browser file download extension spoofing
The remote host is using Opera - an alternative web browser. This version contains a flaw that may allow a malicious user to trick a user into running arbitrary code. The issue is triggered when a malicious web site provides a file for download, but crafts the filename in such a way that the file...
Opera web browser address bar spoofing weakness
The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript SPDX-FileCopyrightText: 2004 David...
Opera web browser address bar spoofing weakness
The remote host is using Opera - an alternative web browser. This version of Opera is vulnerable to a security weakness that may permit malicious web pages to spoof address bar information. This is reportedly possible through malicious use of the JavaScript 'unOnload' event handler when the brows...
Opera web browser large javaScript array handling vulnerability
The remote host is using Opera - an alternative web browser. This version is vulnerable to an issue when handling large JavaScript arrays. In particular, it is possible to crash the browser when performing various operations on Array objects with 99999999999999999999999 or 0x23000000 elements. Th...