Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.800046
Kategorie:General
Titel:Opera Remote Code Execution and Information Disclosure Vulnerabilities (Windows)
Zusammenfassung:The host is installed with Opera Web Browser and is prone to; remote code execution and information disclosure Vulnerabilities.
Beschreibung:Summary:
The host is installed with Opera Web Browser and is prone to
remote code execution and information disclosure Vulnerabilities.

Vulnerability Insight:
Flaws are due to:

- an error in Opera.dll, that fails to anchor identifier (optional argument)

- an unknown error in predicting the cache pathname of a cached Java
applet and then launching this applet from the cache.

Vulnerability Impact:
Successful remote attack could inject arbitrary code, launch
cross site attacks, information disclosure and can even steal related DB (DataBase) contents.

Affected Software/OS:
Opera version prior to 9.60 on Windows.

Solution:
Upgrade to Opera 9.60 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2008-4694
BugTraq ID: 31631
http://www.securityfocus.com/bid/31631
http://security.gentoo.org/glsa/glsa-200811-01.xml
http://www.openwall.com/lists/oss-security/2008/10/21/5
http://www.openwall.com/lists/oss-security/2008/10/22/5
http://securitytracker.com/id?1021016
http://secunia.com/advisories/32177
http://secunia.com/advisories/32394
http://secunia.com/advisories/32538
SuSE Security Announcement: SUSE-SR:2008:022 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00009.html
http://www.vupen.com/english/advisories/2008/2765
XForce ISS Database: opera-redirect-code-execution(45722)
https://exchange.xforce.ibmcloud.com/vulnerabilities/45722
Common Vulnerability Exposure (CVE) ID: CVE-2008-4695
BugTraq ID: 31643
http://www.securityfocus.com/bid/31643
http://securitytracker.com/id?1021017
XForce ISS Database: opera-java-applets-information-disclosure(45723)
https://exchange.xforce.ibmcloud.com/vulnerabilities/45723
CopyrightCopyright (C) 2008 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.