CVE-2005-1475

Опубликовано: 16 июн. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The XMLHttpRequest object in Opera 8.0 Final Build 1095 allows remote attackers to bypass access restrictions and perform unauthorized actions on other domains via a redirect.

Ссылки

http://secunia.com/advisories/15008
Broken Link
Patch
Vendor Advisory
http://secunia.com/secunia_research/2005-4/advisory/
Broken Link
Patch
Vendor Advisory
http://www.securityfocus.com/bid/13970
Broken Link
Third Party Advisory
VDB Entry
http://secunia.com/advisories/15008
Broken Link
Patch
Vendor Advisory
http://secunia.com/secunia_research/2005-4/advisory/
Broken Link
Patch
Vendor Advisory
http://www.securityfocus.com/bid/13970
Broken Link
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*

Версия до 8.01 (исключая)

EPSS

Процентиль: 59%

0.00379

Низкий

7.5 High

CVSS2

Дефекты

CWE-601

Связанные уязвимости

GHSA-5gg9-r5rq-vrhr

github

почти 4 года назад