CVE-2005-3007

Опубликовано: 21 сент. 2005

Источник: nvd

CVSS2: 2.6

EPSS Низкий

Описание

Opera before 8.50 allows remote attackers to spoof the content type of files via a filename with a trailing "." (dot), which might allow remote attackers to trick users into processing dangerous content.

Ссылки

http://marc.info/?l=bugtraq&m=112724692219695&w=2
Mailing List
Third Party Advisory
http://secunia.com/advisories/16645
Broken Link
Patch
http://secunia.com/secunia_research/2005-42/advisory/
Broken Link
Patch
http://www.opera.com/docs/changelogs/linux/850/
Broken Link
http://www.opera.com/docs/changelogs/windows/850/
Broken Link
http://www.osvdb.org/19509
Broken Link
http://www.securityfocus.com/advisories/9339
Broken Link
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/14880
Broken Link
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2005/1789
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/22337
Third Party Advisory
VDB Entry
http://marc.info/?l=bugtraq&m=112724692219695&w=2
Mailing List
Third Party Advisory
http://secunia.com/advisories/16645
Broken Link
Patch
http://secunia.com/secunia_research/2005-42/advisory/
Broken Link
Patch
http://www.opera.com/docs/changelogs/linux/850/
Broken Link
http://www.opera.com/docs/changelogs/windows/850/
Broken Link
http://www.osvdb.org/19509
Broken Link
http://www.securityfocus.com/advisories/9339
Broken Link
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/14880
Broken Link
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2005/1789
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/22337
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*

Версия до 8.50 (исключая)

EPSS

Процентиль: 80%

0.01454

Низкий

2.6 Low

CVSS2

Дефекты

CWE-74

Связанные уязвимости

GHSA-v4c3-7gp9-x6mf

github

почти 4 года назад