CVE-2010-1728Infinite Loop in Browser

3 documents3 sources
Severity
9.3CRITICALNVD
CNA4.3
EPSS
11.5%
top 6.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedMay 6
Latest updateMay 14

Description

Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via JavaScript that writes sequences in an infinite loop, leading to attempted use of uninitialized memory. NOTE: this might overlap CVE-2006-6955.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDopera/opera_browser10.52+57

🔴Vulnerability Details

2
GHSA
GHSA-9m6g-cc2f-9f4h: Opera before 102022-05-14
CVEList
CVE-2010-1728: Opera before 102010-05-05
CVE-2010-1728 — Infinite Loop in Opera Browser | cvebase