This host is installed with Opera and is prone to multiple vulnerabilities.

Successful exploitation will allow remote attackers to execute arbitrary code, perform distinguishing attacks and plaintext-recovery attacks or cause a denial of service. Impact Level: System/Application

Upgrade to Opera version 12.13 or later, For updates refer to http://www.opera.com

- Does not send CORS preflight requests, this allows remote attackers to bypass CSRF protection mechanism via crafted site. - Error with particular DOM events manipulation. - SVG documents with crafted clipPaths allows content to overwrite memory. - Does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding.

Opera version prior to 12.13 on Linux

• http://www.opera.com/docs/changelogs/unified/1213
• http://www.opera.com/support/kb/view/1042
• http://www.opera.com/support/kb/view/1043
• http://www.opera.com/support/kb/view/1044
• http://www.opera.com/support/kb/view/1045

---

Updated on 2015-03-25