CVE-2007-3142 — Browser vulnerability

5 documents5 sources
Severity
5.8MEDIUMNVD
EPSS
0.7%
top 26.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJun 11
Latest updateMay 1

Description

Visual truncation vulnerability in Opera 9.21 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after 34 characters, as demonstrated by a phishing attack using HTTP Basic Authentication.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 8.6 | Impact: 4.9

Affected Packages1 packages

â–¶NVDopera/opera_browser9.21

🔴Vulnerability Details

2
GHSA
GHSA-59mg-34v2-9hq3: Visual truncation vulnerability in Opera 9↗2022-05-01
â–¶
CVEList
CVE-2007-3142: Visual truncation vulnerability in Opera 9↗2007-06-11
â–¶

💥Exploits & PoCs

1
Exploit-DB
Microsoft PowerPoint 2007 - 'rpawinet.dll' DLL Hijacking↗2010-08-25
â–¶

💬Community

1
Bugzilla
CVE-2007-3143 konqueror visual hostname truncation in HTTP authentication dialog↗2007-08-14
â–¶
CVE-2007-3142 — Opera Browser vulnerability | cvebase