Lucene search

Ubuntu.comUB:CVE-2007-5276

HistoryOct 08, 2007 - 12:00 a.m.

CVE-2007-5276

2007-10-0800:00:00

ubuntu.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

55.9%

JSON

Opera 9 drops DNS pins based on failed connections to irrelevant TCP ports,
which makes it easier for remote attackers to conduct DNS rebinding
attacks, as demonstrated by a port 81 URL in an IMG SRC, when the DNS pin
had been established for a session on port 80.

References

launchpad.net/bugs/cve/CVE-2007-5276

nvd.nist.gov/vuln/detail/CVE-2007-5276

security-tracker.debian.org/tracker/CVE-2007-5276

www.cve.org/CVERecord?id=CVE-2007-5276

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

55.9%

JSON

Related for UB:CVE-2007-5276