Opera Browser vulnerabilities

CVE-2010-2660 [MEDIUM] CWE-264 CVE-2010-2660: Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly re Opera before 10.54 on Windows and Mac OS X, and before 10.60 on UNIX platforms, does not properly restrict certain uses of homograph characters in domain names, which makes it easier for remote attackers to spoof IDN domains via unspecified choices of characters.

CVE-2010-2455 [MEDIUM] CVE-2010-2455: Opera does not properly manage the address bar between the request to open a URL and the retrieval o Opera does not properly manage the address bar between the request to open a URL and the retrieval of the new document's content, which might allow remote attackers to conduct spoofing attacks via a crafted HTML document, a related issue to CVE-2010-1206.

CVE-2010-2421 [CRITICAL] CVE-2010-2421: Multiple unspecified vulnerabilities in Opera before 10.54 have unknown impact and attack vectors re Multiple unspecified vulnerabilities in Opera before 10.54 have unknown impact and attack vectors related to (1) "extremely severe," (2) "highly severe," (3) "moderately severe," and (4) "less severe" issues.

CVE-2010-2121 [MEDIUM] CWE-399 CVE-2010-2121: Opera 9.52 allows remote attackers to cause a denial of service (resource consumption) via JavaScrip Opera 9.52 allows remote attackers to cause a denial of service (resource consumption) via JavaScript code containing an infinite loop that creates IFRAME elements for invalid (1) news:// or (2) nntp:// URIs.

CVE-2010-1993 [MEDIUM] CWE-399 CVE-2010-1993: Opera 9.52 does not properly handle an IFRAME element with a mailto: URL in its SRC attribute, which Opera 9.52 does not properly handle an IFRAME element with a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service (resource consumption) via an HTML document with many IFRAME elements.

CVE-2010-1989 [MEDIUM] CVE-2010-1989: Opera 9.52 executes a mail application in situations where an IMG element has a SRC attribute that i Opera 9.52 executes a mail application in situations where an IMG element has a SRC attribute that is a redirect to a mailto: URL, which allows remote attackers to cause a denial of service (excessive application launches) via an HTML document with many images, a related issue to CVE-2010-0181.

CVE-2010-1728 [CRITICAL] CVE-2010-1728: Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modificatio Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via JavaScript that writes sequences in an infinite loop, leading to attempted use of uninitialized memory. NOTE: this might

CVE-2010-1349 [CRITICAL] CWE-189 CVE-2010-1349: Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.

CVE-2010-1310 [MEDIUM] CWE-200 CVE-2010-1310: Opera 10.50 allows remote attackers to obtain sensitive information via crafted XSLT constructs, whi Opera 10.50 allows remote attackers to obtain sensitive information via crafted XSLT constructs, which cause Opera to return cached contents of other pages.

CVE-2009-4072 [CRITICAL] CVE-2009-4072: Unspecified vulnerability in Opera before 10.10 has unknown impact and attack vectors, related to a Unspecified vulnerability in Opera before 10.10 has unknown impact and attack vectors, related to a "moderately severe issue."

CVE-2009-4071 [MEDIUM] CWE-16 CVE-2009-4071: Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a w Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to obtain sensitive information or conduct cross-site scripting (XSS) attacks via unspecified vectors.

CVE-2009-3831 [CRITICAL] CWE-787 CVE-2009-3831: Opera before 10.01 allows remote attackers to execute arbitrary code or cause a denial of service (m Opera before 10.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted domain name.

CVE-2009-3832 [MEDIUM] CWE-601 CVE-2009-3832: Opera before 10.01 on Windows does not prevent use of Web fonts in rendering the product's own user Opera before 10.01 on Windows does not prevent use of Web fonts in rendering the product's own user interface, which allows remote attackers to spoof the address field via a crafted web site.

CVE-2009-3266 [MEDIUM] CWE-79 CVE-2009-3266: Opera before 10.01 does not properly restrict HTML in a (1) RSS or (2) Atom feed, which allows remot Opera before 10.01 does not properly restrict HTML in a (1) RSS or (2) Atom feed, which allows remote attackers to conduct cross-site scripting (XSS) attacks, and conduct cross-zone scripting attacks involving the Feed Subscription Page to read feeds or create feed subscriptions, via a crafted feed, related to the rendering of the application/rss+xml c

CVE-2008-7245 [MEDIUM] CWE-399 CVE-2008-7245: Opera 9.52 and earlier allows remote attackers to cause a denial of service (unusable browser) by ca Opera 9.52 and earlier allows remote attackers to cause a denial of service (unusable browser) by calling the window.print function in a loop, aka a "printing DoS attack," possibly a related issue to CVE-2009-0821.

CVE-2009-3265 [MEDIUM] CWE-79 CVE-2009-3265: Cross-site scripting (XSS) vulnerability in Opera 9 and 10 allows remote attackers to inject arbitra Cross-site scripting (XSS) vulnerability in Opera 9 and 10 allows remote attackers to inject arbitrary web script or HTML via a (1) RSS or (2) Atom feed, related to the rendering of the application/rss+xml content type as "scripted content." NOTE: the vendor reportedly considers this behavior a "design feature," not a vulnerability.

CVE-2009-3269 [MEDIUM] CVE-2009-3269: Opera 9.52 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a Opera 9.52 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a series of automatic submissions of a form containing a KEYGEN element, a related issue to CVE-2009-1828.

CVE-2009-3046 [HIGH] CWE-295 CVE-2009-3046: Opera before 10.00 does not check all intermediate X.509 certificates for revocation, which makes it Opera before 10.00 does not check all intermediate X.509 certificates for revocation, which makes it easier for remote SSL servers to bypass validation of the certificate chain via a revoked certificate.

CVE-2009-3047 [MEDIUM] CVE-2009-3047: Opera before 10.00, when a collapsed address bar is used, does not properly update the domain name f Opera before 10.00, when a collapsed address bar is used, does not properly update the domain name from the previously visited site to the currently visited site, which might allow remote attackers to spoof URLs.

CVE-2009-3048 [MEDIUM] CWE-20 CVE-2009-3048: Opera before 10.00 on Linux, Solaris, and FreeBSD does not properly implement the "INPUT TYPE=file" Opera before 10.00 on Linux, Solaris, and FreeBSD does not properly implement the "INPUT TYPE=file" functionality, which allows remote attackers to trick a user into uploading an unintended file via vectors involving a "dropped file."