5
CVE-2008-2716
- EPSS 2.98%
- Veröffentlicht 16.06.2008 22:41:00
- Zuletzt bearbeitet 16.06.2026 22:54:17
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in Opera before 9.5 allows remote attackers to spoof the contents of trusted frames on the same parent page by modifying the location, which can facilitate phishing attacks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Opera ≫ Opera Browser Version < 9.5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.98% | 0.855 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
CWE-1021 Improper Restriction of Rendered UI Layers or Frames
The web application does not restrict or incorrectly restricts frame objects or UI layers that belong to another application or domain.
http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00005.html
http://secunia.com/advisories/30636
http://secunia.com/advisories/30682
http://www.opera.com/docs/changelogs/linux/950/#security
http://www.opera.com/docs/changelogs/windows/950/#security
http://www.securityfocus.com/bid/29684
http://www.vupen.com/english/advisories/2008/1812
http://www.opera.com/support/search/view/885/
http://www.securitytracker.com/id?1020292
https://exchange.xforce.ibmcloud.com/vulnerabilities/43033