CVE-2006-3945

Опубликовано: 31 июл. 2006

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The CSS functionality in Opera 9 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) by setting the background property of a DHTML element to a long http or https URL, which triggers memory corruption.

Ссылки

http://browserfun.blogspot.com/2006/07/mobb-26-opera-css-background.html
Broken Link
Exploit
http://www.osvdb.org/27374
Broken Link
Exploit
http://www.vupen.com/english/advisories/2006/2987
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/27977
Third Party Advisory
VDB Entry
http://browserfun.blogspot.com/2006/07/mobb-26-opera-css-background.html
Broken Link
Exploit
http://www.osvdb.org/27374
Broken Link
Exploit
http://www.vupen.com/english/advisories/2006/2987
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/27977
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:opera:opera_browser:9.0:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01302

Низкий

5 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-rrjg-c2rx-4hv6

github

почти 4 года назад