CVE-2003-1397

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The PluginContext object of Opera 6.05 and 7.0 allows remote attackers to cause a denial of service (crash) via an HTTP request containing a long string that gets passed to the ShowDocument method.

Ссылки

http://securityreason.com/securityalert/3255
Third Party Advisory
http://www.securityfocus.com/archive/1/311214
Broken Link
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/6814
Broken Link
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/11280
VDB Entry
http://securityreason.com/securityalert/3255
Third Party Advisory
http://www.securityfocus.com/archive/1/311214
Broken Link
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/6814
Broken Link
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/11280
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:opera:opera_browser:6.05:*:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:7.0:*:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:7.0:beta1:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:7.0:beta1_v2:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:7.0:beta2:*:*:*:*:*:*

cpe:2.3:a:opera:opera_browser:7.01:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.05155

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-qxh7-4xcw-xqvm

github

больше 3 лет назад