4 matches found
Gentoo Security Advisory GLSA 201206-03 (Opera)
The remote host is missing updates announced in advisory GLSA 201206-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
openSUSE Security Update : opera (opera-1261)
Opera version 10 includes at least security fixes for an XML denial-of-service bug CVE-2009-1234 and the 'SSL tampering' attack CVE-2009-2059, CVE-2009-2063, CVE-2009-2067, CVE-2009-2070. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...
多个浏览器WEB代理重定向处理中间人漏洞
Bugraq ID: 35412 CVE ID:CVE-2009-2061 CVE-2009-2062 CVE-2009-2063 多个浏览器处理WEB代理重定向存在中间人攻击。 攻击者可以利用这个漏洞进行钓鱼攻击或获得敏感信息。不过要利用此漏洞,攻击者必须截获或控制网络通信,如通过中间人,DNS毒药等攻击。 如下浏览器受此漏洞影响: Mozilla Firefox prior to 3.0.10 Apple Safari prior to 3.2.2 Opera prior to 9.25 Opera Software Opera Web Browser 8.51 Opera...
CVE-2009-2063
Opera vulnerable to SSL-tampering via a 3xx HTTP CONNECT response processed before the SSL handshake (CVE-2009-2063). An attacker could MITM an HTTPS site by injecting a 302 redirect to another HTTPS page, enabling arbitrary script execution in the context of the target site. Affected: Opera vers...