Summary
The host is installed with Opera browser and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code and cause a denial of service.
Impact Level: System/Application
Solution
Upgrade to Opera Web Browser Version 11.10 or later, For updates refer to http://www.opera.com/download/
Insight
The flaws are due to
- An error in cascading Style Sheets (CSS) implementation, allows attackers to cause denial of service via vectors involving use of the :hover pseudo-class.
- Hijacking searches and other customisations in Opera.
- An error Tomato Firmware v1.28.1816 Status Device List page in Opera.
- Crashes on futura-sciences.com, seoptimise.com, mitosyfraudes.org.
- Crash occurring with games on zylom.com.
- Hidden animated '.gif' causing high CPU load, because of constant repaints.
- Crash when passing empty parameter to a Java applet.
Affected
Opera Web Browser Version prior 11.10
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-2634, CVE-2011-2635, CVE-2011-2636, CVE-2011-2637, CVE-2011-2638, CVE-2011-2639, CVE-2011-2640 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities