Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.802754
Kategorie:Denial of Service
Titel:Opera Web Browser Select Object Denial Of Service Vulnerability (Mac OS X)
Zusammenfassung:The host is installed with Opera Web Browser and is prone to select object; denial of service vulnerability.
Beschreibung:Summary:
The host is installed with Opera Web Browser and is prone to select object
denial of service vulnerability.

Vulnerability Insight:
The flaw is due to an improper boundary check while passing data into
the select() method and can be exploited by passing a large integer value
resulting in memory exhaustion.

Vulnerability Impact:
Successful exploitation will let the attacker crash the browser leading to
denial of service.

Affected Software/OS:
Opera version 9.64 and prior on Mac OS X

Solution:
Upgrade to opera version 10 beta 1 or later.

CVSS Score:
7.1

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:C

Querverweis: BugTraq ID: 35446
Common Vulnerability Exposure (CVE) ID: CVE-2009-2540
Bugtraq: 20090715 Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search)
http://www.securityfocus.com/archive/1/504989/100/0/threaded
Bugtraq: 20090715 Re:[GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search)
http://www.securityfocus.com/archive/1/504988/100/0/threaded
Bugtraq: 20090715 [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search)
http://www.securityfocus.com/archive/1/504969/100/0/threaded
Bugtraq: 20090716 Re[2]: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3.... (Google Search)
http://www.securityfocus.com/archive/1/505006/100/0/threaded
http://www.exploit-db.com/exploits/9160
http://www.g-sec.lu/one-bug-to-rule-them-all.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5957
XForce ISS Database: opera-integer-value-dos(52874)
https://exchange.xforce.ibmcloud.com/vulnerabilities/52874
Common Vulnerability Exposure (CVE) ID: CVE-2009-1692
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html
BugTraq ID: 35414
http://www.securityfocus.com/bid/35414
http://www.securityfocus.com/bid/35446
Debian Security Information: DSA-1950 (Google Search)
http://www.debian.org/security/2009/dsa-1950
https://www.exploit-db.com/exploits/9160
https://bugs.webkit.org/show_bug.cgi?id=23319
http://osvdb.org/55242
http://secunia.com/advisories/36977
http://secunia.com/advisories/37746
http://secunia.com/advisories/43068
SuSE Security Announcement: SUSE-SR:2011:002 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://www.vupen.com/english/advisories/2009/1621
http://www.vupen.com/english/advisories/2011/0212
CopyrightCopyright (c) 2012 Greenbone Networks GmbH

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.