7.2
CVE-2005-0457
- EPSS 0.41%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:11:08
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Opera 7.54 and earlier on Gentoo Linux uses an insecure path for plugins, which could allow local users to gain privileges by inserting malicious libraries into the PORTAGE_TMPDIR (portage) temporary directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Opera ≫ Opera Browser Version <= 7.54
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.41% | 0.322 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
CWE-427 Uncontrolled Search Path Element
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
http://www.gentoo.org/security/en/glsa/glsa-200502-17.xml
http://bugs.gentoo.org/show_bug.cgi?id=81747