Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.801495
Category:General
Title:Opera Browser Multiple Vulnerabilities December-10 (Windows)
Summary:The host is installed with Opera browser and is prone to multiple; vulnerabilities.
Description:Summary:
The host is installed with Opera browser and is prone to multiple
vulnerabilities.

Vulnerability Insight:
Multiple flaws are caused due to:

- WAP fails to clear 'WML' form fields after manual navigation to a new web
site, which allows remote attackers to obtain sensitive information.

- Not properly constrain dialogs to appear on top of rendered documents.

- Unspecified vulnerability which has unknown impact and attack vectors.

- Not display a page's security indication, when Opera Turbo is enabled.

- Not properly handling security policies during updates to extensions.

- Fails to present information about problematic 'X.509' certificates on
https web sites, when 'Opera Turbo' is used.

- Unspecified vulnerability in the auto-update functionality, which leads
to a denial of service.

- Fails to implement the Insecure Third Party Module warning message.

- Enabling 'WebSockets' functionality, which has unspecified impact and
remote attack vectors.

Vulnerability Impact:
Successful exploitation will allow remote attackers to obtain sensitive
information and cause a denial of service.

Affected Software/OS:
Opera Web Browser Version prior 11.00

Solution:
Upgrade to Opera Web Browser Version 11.00 or later.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2010-4579
http://secunia.com/advisories/42653
SuSE Security Announcement: SUSE-SR:2010:024 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
Common Vulnerability Exposure (CVE) ID: CVE-2010-4580
Common Vulnerability Exposure (CVE) ID: CVE-2010-4581
Common Vulnerability Exposure (CVE) ID: CVE-2010-4582
Common Vulnerability Exposure (CVE) ID: CVE-2010-4583
Common Vulnerability Exposure (CVE) ID: CVE-2010-4584
Common Vulnerability Exposure (CVE) ID: CVE-2010-4585
Common Vulnerability Exposure (CVE) ID: CVE-2010-4586
Common Vulnerability Exposure (CVE) ID: CVE-2010-4587
CopyrightCopyright (C) 2010 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.