Summary
The host is installed with Opera browser and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code and cause a denial of service.
Impact Level: Application
Solution
Upgarde to Opera Web Browser Version 11.01 or later, For updates refer to http://www.opera.com/download/
Insight
Multiple flaws are cause due to:
- An error in determining the pathname of the filesystem-viewing application - An error in handling large form inputs
- An error Cascading Style Sheets (CSS) Extensions for XML implementation - An error while restricting the use of opera: URLs - An error in handling of redirections and unspecified other HTTP responses - An error in implementing the 'Clear all email account passwords' option, which might allow physically proximate attackers to access an e-mail account via an unattended workstation
- An error in the implementation of Wireless Application Protocol (WAP) dropdown lists.
Affected
Opera Web Browser Version prior 11.01
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-0450, CVE-2011-0681, CVE-2011-0682, CVE-2011-0683, CVE-2011-0684, CVE-2011-0685, CVE-2011-0686, CVE-2011-0687 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Windows)
- Adobe Air and Flash Player Multiple Vulnerabilities August-2011 (Windows)
- Adobe AIR Security Bypass Vulnerability Jan14 (Windows)
- Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)
- Adobe Air Code Execution and DoS Vulnerabilities (Windows)