Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.800046 |
Kategorie: | General |
Titel: | Opera Remote Code Execution and Information Disclosure Vulnerabilities (Windows) |
Zusammenfassung: | The host is installed with Opera Web Browser and is prone to; remote code execution and information disclosure Vulnerabilities. |
Beschreibung: | Summary: The host is installed with Opera Web Browser and is prone to remote code execution and information disclosure Vulnerabilities. Vulnerability Insight: Flaws are due to: - an error in Opera.dll, that fails to anchor identifier (optional argument) - an unknown error in predicting the cache pathname of a cached Java applet and then launching this applet from the cache. Vulnerability Impact: Successful remote attack could inject arbitrary code, launch cross site attacks, information disclosure and can even steal related DB (DataBase) contents. Affected Software/OS: Opera version prior to 9.60 on Windows. Solution: Upgrade to Opera 9.60 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2008-4694 BugTraq ID: 31631 http://www.securityfocus.com/bid/31631 http://security.gentoo.org/glsa/glsa-200811-01.xml http://www.openwall.com/lists/oss-security/2008/10/21/5 http://www.openwall.com/lists/oss-security/2008/10/22/5 http://securitytracker.com/id?1021016 http://secunia.com/advisories/32177 http://secunia.com/advisories/32394 http://secunia.com/advisories/32538 SuSE Security Announcement: SUSE-SR:2008:022 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00009.html http://www.vupen.com/english/advisories/2008/2765 XForce ISS Database: opera-redirect-code-execution(45722) https://exchange.xforce.ibmcloud.com/vulnerabilities/45722 Common Vulnerability Exposure (CVE) ID: CVE-2008-4695 BugTraq ID: 31643 http://www.securityfocus.com/bid/31643 http://securitytracker.com/id?1021017 XForce ISS Database: opera-java-applets-information-disclosure(45723) https://exchange.xforce.ibmcloud.com/vulnerabilities/45723 |
Copyright | Copyright (C) 2008 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |