Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.801140
Kategorie:Denial of Service
Titel:Opera Multiple Vulnerabilities - Nov09 (Windows)
Zusammenfassung:This host is installed with Opera Web Browser and is prone to; multiple vulnerabilities.
Beschreibung:Summary:
This host is installed with Opera Web Browser and is prone to
multiple vulnerabilities.

Vulnerability Insight:
- An error when processing domain names can be exploited to cause a memory
corruption.

- An error when processing web fonts can be exploited to change the font of
the address field and display an arbitrary domain name as an address.

Vulnerability Impact:
Attacker can exploit this issue to disclose sensitive information, conduct
spoofing attacks, Denial of Service or compromise a user's system.

Affected Software/OS:
Opera version prior to 10.01 on Windows.

Solution:
Upgrade to Opera version 10.01 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: BugTraq ID: 36850
Common Vulnerability Exposure (CVE) ID: CVE-2009-3831
http://www.securityfocus.com/bid/36850
http://www.osvdb.org/59357
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6574
http://secunia.com/advisories/37182
http://www.vupen.com/english/advisories/2009/3073
XForce ISS Database: opera-domain-names-code-execution(54020)
https://exchange.xforce.ibmcloud.com/vulnerabilities/54020
Common Vulnerability Exposure (CVE) ID: CVE-2009-3832
http://www.osvdb.org/59359
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6384
XForce ISS Database: opera-web-fonts-spoofing(54022)
https://exchange.xforce.ibmcloud.com/vulnerabilities/54022
CopyrightCopyright (C) 2009 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.