Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-4718 — Browser vulnerability

5 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

5.5%

top 9.77%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Opera Browser

Timeline

PublishedDec 31

Latest updateMay 1

Description

Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDopera/opera_browser8.02

🔴Vulnerability Details

GHSA

GHSA-8jpc-vcqh-2w24: Opera 8↗2022-05-01

▶

CVEList

CVE-2005-4718: Opera 8↗2006-02-15

▶

💥Exploits & PoCs

Exploit-DB

Opera 8.02 - Remote Denial of Service (1)↗2005-10-16

▶

Exploit-DB

Opera 8.02 - Remote Denial of Service (2)↗2005-10-16

▶