Opera : Security vulnerabilities, CVEs published in July 2008

Copy

CVE-2008-3172

Opera allows web sites to set cookies for country-specific top-level domains that have DNS A records, such as co.tv, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session, aka "Cross-Site Cooking."

Max CVSS

6.8

EPSS Score

0.68%

Published

2008-07-14

Updated

2017-08-08

CVE-2008-3079

Unspecified vulnerability in Opera before 9.51 on Windows allows attackers to execute arbitrary code via unknown vectors.

Max CVSS

10.0

EPSS Score

0.61%

Published

2008-07-09

Updated

2017-08-08

CVE-2008-3078

Opera before 9.51 does not properly manage memory within functions supporting the CANVAS element, which allows remote attackers to read uninitialized memory contents by using JavaScript to read a canvas image.

Max CVSS

7.8

EPSS Score

0.75%

Published

2008-07-09

Updated

2017-08-08

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!