Summary
The host is installed with Opera Browser and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow remote attackers to bypass certain security protections, execute arbitrary code, or cause denial-of-service conditions.
Impact Level: Application
Solution
Upgarde to Opera Web Browser Version 10.61 or later, For updates refer to http://www.opera.com/download/
Insight
The multiple flaws are cause due to:
- An error in the processing of painting operations on a canvas while certain transformations are being applied, which can be exploited to cause a heap-based buffer overflow.
- An error when displaying the download dialog, which could allow attackers to trick a user into running downloaded executables.
- An error when previewing a news feed, which can be exploited to execute script code and automatically subscribe the user to the feed.
Affected
Opera Web Browser Version prior to 10.61
References
Severity
Classification
-
CVE CVE-2010-2576, CVE-2010-3019, CVE-2010-3020, CVE-2010-3021 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Linux)
- Adobe AIR Multiple Vulnerabilities-01 Jun14 (Mac OS X)
- Adobe Acrobat Sandbox Bypass Vulnerability - Aug14 (Windows)
- Adobe Air Multiple Vulnerabilities June-2012 (Mac OS X)
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)