CVE-2010-2660
published 2010-07-08CVE-2010-2660: Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain…
PriorityP421medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
2.27%
80.9th percentile
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain names, which makes it easier for remote attackers to spoof IDN domains via unspecified choices of characters.
Affected
83 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| opera | opera_browser | <= 11.60 | — |
| opera | opera_browser | <= 10.53 | — |
| opera | opera_browser | <= 10.60 | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
| opera | opera_browser | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jmr7-hhwf-4jqm: Opera before 11
ghsa_unreviewed·2022-05-17·CVSS 4.3
CVE-2012-4010 [MEDIUM] GHSA-jmr7-hhwf-4jqm: Opera before 11
Opera before 11.60 allows remote attackers to spoof the address bar via unspecified homograph characters, a different vulnerability than CVE-2010-2660.
GHSA
GHSA-cqv3-xg95-jpjv: Opera before 10
ghsa_unreviewed·2022-05-14
CVE-2010-2660 [MEDIUM] GHSA-cqv3-xg95-jpjv: Opera before 10
Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain names, which makes it easier for remote attackers to spoof IDN domains via unspecified choices of characters.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/40250http://www.opera.com/docs/changelogs/mac/1054/http://www.opera.com/docs/changelogs/unix/1060/http://www.opera.com/docs/changelogs/windows/1054/http://www.opera.com/support/search/view/961/http://www.securityfocus.com/bid/40973http://www.vupen.com/english/advisories/2010/1529http://www.vupen.com/english/advisories/2010/1673https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11603http://secunia.com/advisories/40250http://www.opera.com/docs/changelogs/mac/1054/http://www.opera.com/docs/changelogs/unix/1060/http://www.opera.com/docs/changelogs/windows/1054/http://www.opera.com/support/search/view/961/http://www.securityfocus.com/bid/40973http://www.vupen.com/english/advisories/2010/1529http://www.vupen.com/english/advisories/2010/1673https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11603
2010-07-08
Published