CVE-2008-5178
published 2008-11-20CVE-2008-5178: Heap-based buffer overflow in Opera 9.62 on Windows allows remote attackers to execute arbitrary code via a long file:// URI. NOTE: this might overlap…
PriorityP355critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
31.51%
98.1th percentile
Heap-based buffer overflow in Opera 9.62 on Windows allows remote attackers to execute arbitrary code via a long file:// URI. NOTE: this might overlap CVE-2008-5680.
Affected
74 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| opera | opera | — | — |
| opera | opera_browser | <= 9.62 | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pmv4-h8p5-cgxp: Heap-based buffer overflow in Opera 9
ghsa_unreviewed·2022-05-17·CVSS 9.3
CVE-2008-5178 [CRITICAL] CWE-119 GHSA-pmv4-h8p5-cgxp: Heap-based buffer overflow in Opera 9
Heap-based buffer overflow in Opera 9.62 on Windows allows remote attackers to execute arbitrary code via a long file:// URI. NOTE: this might overlap CVE-2008-5680.
GHSA
GHSA-prg5-357m-6gr2: Multiple buffer overflows in Opera before 9
ghsa_unreviewed·2022-05-14·CVSS 9.3
CVE-2008-5680 [CRITICAL] CWE-119 GHSA-prg5-357m-6gr2: Multiple buffer overflows in Opera before 9
Multiple buffer overflows in Opera before 9.63 might allow (1) remote attackers to execute arbitrary code via a crafted text area, or allow (2) user-assisted remote attackers to execute arbitrary code via a long host name in a file: URL. NOTE: this might overlap CVE-2008-5178.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2008-11/0110.htmlhttp://osvdb.org/49882http://secunia.com/advisories/32752http://secunia.com/advisories/34294http://security.gentoo.org/glsa/glsa-200903-30.xmlhttp://www.opera.com/support/kb/view/922/http://www.securityfocus.com/bid/32323http://www.vupen.com/english/advisories/2008/3183https://exchange.xforce.ibmcloud.com/vulnerabilities/46653https://www.exploit-db.com/exploits/7135http://archives.neohapsis.com/archives/bugtraq/2008-11/0110.htmlhttp://osvdb.org/49882http://secunia.com/advisories/32752http://secunia.com/advisories/34294http://security.gentoo.org/glsa/glsa-200903-30.xmlhttp://www.opera.com/support/kb/view/922/http://www.securityfocus.com/bid/32323http://www.vupen.com/english/advisories/2008/3183https://exchange.xforce.ibmcloud.com/vulnerabilities/46653https://www.exploit-db.com/exploits/7135
2008-11-20
Published