Описание
Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.
Ссылки
- Broken LinkExploitThird Party AdvisoryVDB Entry
- Exploit
- Exploit
- Broken LinkExploitThird Party AdvisoryVDB Entry
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1Версия до 8.02 (включая)
cpe:2.3:a:opera:opera_browser:*:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.1086
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
почти 4 года назад
Opera 8.02 and earlier allows remote attackers to cause a denial of service (client crash) via (1) a crafted HTML file with a "content: url(0);" style attribute, a "bodyA" tag, a long string, and a "u" tag with a long attribute, as demonstrated by opera.html; and (2) a BGSOUND element with a "margin:-99;" STYLE attribute.
EPSS
Процентиль: 93%
0.1086
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-noinfo