Описание
Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.
Ссылки
- http://my.opera.com/securitygroup/blog/2010/03/09/the-malformed-content-length-header-security-issueVendor Advisory
- Vendor Advisory
- Exploit
- Vendor Advisory
- ExploitPatch
- PatchVendor Advisory
- http://my.opera.com/securitygroup/blog/2010/03/09/the-malformed-content-length-header-security-issueVendor Advisory
- Vendor Advisory
- Exploit
- Vendor Advisory
- ExploitPatch
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:opera:opera_browser:10.10:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.50:*:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.50:beta_1:*:*:*:*:*:*
cpe:2.3:a:opera:opera_browser:10.50:beta_2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.41837
Средний
10 Critical
CVSS2
Дефекты
CWE-189
Связанные уязвимости
github
почти 4 года назад
Integer overflow in Opera 10.10 through 10.50 allows remote attackers to execute arbitrary code via a large Content-Length value, which triggers a heap overflow.
EPSS
Процентиль: 97%
0.41837
Средний
10 Critical
CVSS2
Дефекты
CWE-189