CVE-2004-1490 — Browser vulnerability

4 documents4 sources

Severity

2.6LOWNVD

EPSS

1.1%

top 21.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Opera Browser

Timeline

PublishedDec 31

Latest updateApr 29

Description

Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.

CVSS vector

AV:N/AC:H/C:N/I:P/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

▶NVDopera/opera_browser7.54

Patches

Patch: secunia.com ↗Patch: secunia.com ↗Patch: www.gentoo.org ↗

🔴Vulnerability Details

GHSA

GHSA-f44x-mffr-9h8r: Opera 7↗2022-04-29

▶

CVEList

CVE-2004-1490: Opera 7↗2005-02-17

▶

💥Exploits & PoCs

Exploit-DB

Sendmail 8.12.x - 'X-header' Remote Heap Buffer Overflow (PoC)↗2009-05-27

▶