CVE-2009-3049 — Browser vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 30.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Opera Browser

Timeline

PublishedSep 2

Latest updateMay 2

Description

Opera before 10.00 does not properly display all characters in Internationalized Domain Names (IDN) in the address bar, which allows remote attackers to spoof URLs and conduct phishing attacks, related to Unicode and Punycode.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDopera/opera_browser10.00+24

🔴Vulnerability Details

GHSA

GHSA-ch49-j2xq-99mr: Opera before 10↗2022-05-02

▶

CVEList

CVE-2009-3049: Opera before 10↗2009-09-02

▶