opera software vulnerabilities
vulnerabilities.aspcode.net
Searching opera software vulnerabilities
Opera 3.2.1 allows remote attackers to cause a
Opera
|
Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag.
Opera 5.0 for Linux does not properly handle ma
attackers
|
malformed
|
properly
|
possibly
|
headers
|
service
|
allows
|
remote
|
denial
|
header
|
handle
|
Opera
|
Linux
|
whose
|
value
|
cause
|
which
|
name
|
same
|
MIME
|
does
|
HTTP
|
not
|
Opera 5.0 for Linux does not properly handle malformed HTTP headers, which allows remote attackers to cause a denial of service, possibly with a header whose value is the same as a MIME header name.
Opera 5.11 allows remote attackers to cause a d
Opera
|
Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images.
Cross-site scripting vulnerability in Opera 6.0
vulnerability
|
Cross-site
|
arbitrary
|
attackers
|
scripting
|
Extended
|
properly
|
cleansed
|
earlier
|
execute
|
server
|
output
|
script
|
remote
|
allows
|
Opera
|
whose
|
HTML
|
Form
|
via
|
not
|
Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed.
Opera 6.01, 6.0, and 5.12 allows remote attacke
Opera
|
Opera 6.01, 6.0, and 5.12 allows remote attackers to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL.
Opera allows remote attackers to bypass intende
restrictions
|
application
|
attackers
|
intended
|
"%2e%2e"
|
access
|
cookie
|
allows
|
remote
|
bypass
|
Opera
|
via
|
web
|
Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Heap-based buffer overflow in Opera 7.11 and 7.
Heap-based
|
overflow
|
buffer
|
Opera
|
Heap-based buffer overflow in Opera 7.11 and 7.20 allows remote attackers to execute arbitrary code via an HREF with a large number of escaped characters in the server name.
Opera 7.54 allows remote attackers to cause a d
Opera
|
Opera 7.54 allows remote attackers to cause a denial of service (application crash from memory exhaustion), as demonstrated using Javascript code that continuously creates nested arrays and then sorts the newly created arrays.
Opera 7.54 and earlier does not properly limit
Opera
|
Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.
Opera 7.54 and earlier allows remote attackers
Opera
|
Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers.
Opera 7.54 and earlier uses kfmclient exec to h
Opera
|
Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.
Opera allows remote attackers to cause a denial
attackers
|
service
|
denial
|
allows
|
remote
|
Opera
|
cause
|
Opera allows remote attackers to cause a denial of service (invalid memory reference and application crash) via a web page or HTML email that contains a TBODY tag with a large COL SPAN value, as demonstrated by mangleme.
The Javascript engine in Opera 7.23 allows remo
Javascript
|
engine
|
Opera
|
The Javascript engine in Opera 7.23 allows remote attackers to cause a denial of service (crash) by creating a new Array object with a large size value, then writing into that array.
A race condition in Opera web browser 7.53 Buil
condition
|
browser
|
Opera
|
race
|
web
|
A race condition in Opera web browser 7.53 Build 3850 causes Opera to fill in the address bar before the page has been loaded, which allows remote attackers to spoof the URL in the address bar via the window.open and location.replace HTML parameters, which facilitates phishing attacks.
The XMLHttpRequest object in Opera 8.0 Final Bu
XMLHttpRequest
|
object
|
Build
|
Final
|
Opera
|
The XMLHttpRequest object in Opera 8.0 Final Build 1095 allows remote attackers to bypass access restrictions and perform unauthorized actions on other domains via a redirect.
Opera 8.01 allows remote attackers to cause a d
Opera
|
Opera 8.01 allows remote attackers to cause a denial of service (CPU consumption) via a crafted JPEG image, as demonstrated using random.jpg.
Unspecified "drag-and-drop vulnerability" in Op
vulnerability"
|
"drag-and-drop
|
Unspecified
|
Browser
|
before
|
Opera
|
Web
|
Unspecified "drag-and-drop vulnerability" in Opera Web Browser before 8.50 on Windows allows "unintentional file uploads."
Opera 8.50 allows remote attackers to cause a d
Opera
|
Opera 8.50 allows remote attackers to cause a denial of service (crash) via a Java applet with a large string argument to the removeMember JNI method for the com.opera.JSObject class.
Heap-based buffer overflow in Opera 9.0 and 9.0
Heap-based
|
overflow
|
buffer
|
Opera
|
Heap-based buffer overflow in Opera 9.0 and 9.01 allows remote attackers to execute arbitrary code via a long URL in a tag (long link address).
Opera before 9.23 allows remote attackers to ex
before
|
Opera
|
Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer."
Software vulnerabilities results 1 to 20 of 74
Page:
1
2
3
4
►