CVE-2007-0127Code Injection in Browser

CWE-94Code Injection3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
10.1%
top 6.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJan 9
Latest updateMay 1

Description

The Javascript SVG support in Opera before 9.10 does not properly validate object types in a createSVGTransformFromMatrix request, which allows remote attackers to execute arbitrary code via JavaScript code that uses an invalid object in this request that causes a controlled pointer to be referenced during the virtual function call.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDopera/opera_browser9.02+56

Patches

Patch: labs.idefense.comPatch: secunia.comPatch: labs.idefense.com

🔴Vulnerability Details

2
GHSA
GHSA-2jc3-9523-wwmj: The Javascript SVG support in Opera before 92022-05-01
CVEList
CVE-2007-0127: The Javascript SVG support in Opera before 92007-01-09
CVE-2007-0127 — Code Injection in Opera Browser | cvebase