Описание
The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames.
The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-3006
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22335
- http://marc.info/?l=bugtraq&m=112724692219695&w=2
- http://secunia.com/advisories/16645
- http://secunia.com/secunia_research/2005-42/advisory
- http://www.opera.com/docs/changelogs/linux/850
- http://www.opera.com/docs/changelogs/windows/850
- http://www.osvdb.org/19508
- http://www.securityfocus.com/advisories/9339
- http://www.securityfocus.com/bid/14880
- http://www.vupen.com/english/advisories/2005/1789
EPSS
Процентиль: 78%
0.01116
Низкий
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
The mail client in Opera before 8.50 opens attached files from the user's cache directory without warning the user, which might allow remote attackers to inject arbitrary web script and spoof attachment filenames.
EPSS
Процентиль: 78%
0.01116
Низкий