CVE-2011-2631Improper Input Validation in Browser

CWE-20Improper Input Validation3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.5%
top 34.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Opera Browser
Timeline
PublishedJul 1
Latest updateMay 17

Description

The Cascading Style Sheets (CSS) implementation in Opera before 11.11 does not properly handle the column-count property, which allows remote attackers to cause a denial of service (infinite repaint loop and application hang) via a web page, as demonstrated by an unspecified Wikipedia page.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDopera/opera_browser11.10+75

🔴Vulnerability Details

2
GHSA
GHSA-3hr4-2x74-c996: The Cascading Style Sheets (CSS) implementation in Opera before 112022-05-17
CVEList
CVE-2011-2631: The Cascading Style Sheets (CSS) implementation in Opera before 112011-07-01
CVE-2011-2631 — Improper Input Validation in Browser | cvebase