CVE-2007-3929Use After Free in Browser

CWE-416Use After Free3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
7.5%
top 8.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJul 21
Latest updateMay 1

Description

Use-after-free vulnerability in the BitTorrent support in Opera before 9.22 allows user-assisted remote attackers to execute arbitrary code via a crafted header in a torrent file, which leaves a dangling pointer to an invalid object.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: secunia.comPatch: www.opera.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-84qc-cgrr-m4wp: Use-after-free vulnerability in the BitTorrent support in Opera before 92022-05-01
CVEList
CVE-2007-3929: Use-after-free vulnerability in the BitTorrent support in Opera before 92007-07-21
CVE-2007-3929 — Use After Free in Opera Browser | cvebase