Summary
The host is installed with Opera and is prone to spoofing vulnerability
Impact
Successful exploitation will allow remote attackers to spoof servers and obtain sensitive information.
Impact Level: Application
Solution
Upgrade to Opera 9.63 or later,
For updates refer to http://www.opera.com/
Insight
The flaw is due to an error in handling of certificates, It does not properly verify 'X.509' certificates from SSL servers.
Affected
Opera version prior to 9.63 on Windows
References
Severity
Classification
-
CVE CVE-2012-1251 -
CVSS Base Score: 5.8
AV:N/AC:M/Au:N/C:P/I:P/A:N
Related Vulnerabilities
- Apple Safari Secure Cookie Security Bypass Vulnerability (Windows)
- Adobe Digital Edition Information Disclosure Vulnerability (Windows)
- Adobe Reader 'file://' URL Information Disclosure Vulnerability Feb07 (Linux)
- Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Win)
- Apple Mac OS X Authentication Bypass Vulnerability