exploitDog

CVE-2010-5072

Опубликовано: 07 дек. 2011

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.

Ссылки

http://w2spconf.com/2010/papers/p26.pdf
Exploit
http://w2spconf.com/2010/papers/p26.pdf
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opera:opera_browser:10.50:*:*:*:*:*:*:*

EPSS

Процентиль: 46%

0.0023

Низкий

5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-fhcx-6h53-5frf

github

больше 3 лет назад

The JavaScript implementation in Opera 10.5 does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.

EPSS

Процентиль: 46%

0.0023

Низкий

5 Medium

CVSS2

Дефекты

CWE-264